CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,660 vulnerabilities with CWE-416
CVE-2021-34908 HIGH
Bentley View < 10.16.02 - Remote Code Execution via J2K File Parsing
CVSS 7.8
CVE-2021-34906 HIGH
Bentley View < 10.16.02 - Remote Code Execution via J2K File Parsing
CVSS 7.8
CVE-2021-34895 HIGH
Bentley View < 10.16.02 - Remote Code Execution via 3DS File Parsing
CVSS 7.8
CVE-2021-34894 HIGH
Bentley View < 10.16.02 - Remote Code Execution via 3DS File Parsing
CVSS 7.8
CVE-2021-34891 HIGH
Bentley View < 10.16.02 - Use-After-Free in JT File Parser
CVSS 7.8
CVE-2021-34886 LOW
Bentley View < 10.16.02 - Use-After-Free in FBX File Parser
CVSS 3.3
CVE-2021-34884 LOW
Bentley View < 10.16.02 - Use-After-Free in JP2 File Parser
CVSS 3.3
CVE-2021-34879 HIGH
Bentley View < 10.16.02 - Remote Code Execution via J2K File Parsing
CVSS 7.8
CVE-2021-34872 HIGH
Bentley View < 10.16.02 - Remote Code Execution via SKP File Parsing
CVSS 7.8
CVE-2021-45059 LOW
Adobe InDesign < 16.4 - Use-After-Free in JPEG2000 File Processing
CVSS 3.3
CVE-2021-45054 LOW
Adobe InCopy < 16.4 - Use-After-Free in JPEG2000 File Processing
CVSS 3.3
CVE-2021-30313 MEDIUM
Qualcomm Firmware - Use-After-Free via Race Condition in Wired Connectivity Folder Handling
CVSS 6.7
CVE-2021-40566 MEDIUM
gpac < 1.0.1 - Use-After-Free in mpgviddmx_process Function
CVSS 5.5
CVE-2021-36408 MEDIUM
libde265 v1.0.8 - Use-After-Free in intrapred.h
CVSS 5.5
CVE-2021-46142 MEDIUM
uriparser < 0.9.6 - Use-After-Free in uriNormalizeSyntax
CVSS 5.5
CVE-2021-46141 MEDIUM
uriparser <0.9.6 - Memory Corruption
CVSS 5.5
CVE-2021-41043 MEDIUM
tcpslice < 1.5 - Use-After-Free
CVSS 5.5
CVE-2021-30337 HIGH
Qualcomm APQ8009 and related firmware - Use-After-Free via IOCTL Call
CVSS 8.4
CVE-2021-30262 HIGH
Qualcomm APQ8009W Firmware - Use-After-Free via Socket State Validation
CVSS 8.4
CVE-2021-45944 MEDIUM
Ghostscript GhostPDL <9.54 - Use After Free
CVSS 5.5
CVE-2021-4192 HIGH
vim < 8.2.3949 - Use-After-Free
CVSS 7.8
CVE-2021-4187 HIGH
vim < 8.2.3912 - Use-After-Free
CVSS 7.8
CVE-2021-4173 HIGH
vim < 8.2.3902 - Use-After-Free
CVSS 7.8
CVE-2021-45702 HIGH
tremor-script <0.11.6 - Use After Free
CVSS 7.5
CVE-2021-45701 CRITICAL
tremor-script <0.11.6 - Use After Free
CVSS 9.8
Details
Vulnerabilities 7,660
Exploit Likelihood High