CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,660 vulnerabilities with CWE-416
CVE-2021-0898 MEDIUM
Android - Use-After-Free in apusys
CVSS 6.7
CVE-2021-0893 MEDIUM
Android - Use-After-Free in apusys
CVSS 6.7
CVE-2021-39656 MEDIUM
Android - Use-After-Free in __configfs_open_file
CVSS 6.7
CVE-2021-39638 MEDIUM
Android - Use-After-Free in lwis_periodic_io.c
CVSS 6.7
CVE-2021-1048 HIGH KEV
Android - Use-After-Free in eventpoll.c ep_loop_check_proc
CVSS 7.8
CVE-2021-1042 MEDIUM
Android - Use-After-Free in dsi_panel_debugfs_read_cmdset
CVSS 4.4
CVE-2021-1029 HIGH
Android - Use-After-Free in SurfaceFlinger.cpp setClientStateLocked
CVSS 7.8
CVE-2021-1028 HIGH
Android <12 - Local Privilege Escalation
CVSS 7.8
CVE-2021-0929 HIGH
Android - Use-After-Free in ion_dma_buf_end_cpu_access
CVSS 7.8
CVE-2021-0920 MEDIUM KEV
Linux Kernel < 5.13 - Use-After-Free via Race Condition in unix_scm_to_skb
CVSS 6.4
CVE-2021-44447 HIGH
Siemens JT Open Toolkit < 11.0.3.0 and JT Utilities < 13.0.3.0 - Use-After-Free in JT File Parser
CVSS 7.8
CVE-2021-44433 HIGH
Siemens JT Open Toolkit < 11.1.1.0 and JT Utilities < 13.1.1.0 - Use-After-Free in JT File Parser
CVSS 7.8
CVE-2021-44014 HIGH
Siemens JT Open Toolkit < 11.1.1.0 - Use-After-Free in Jt1001.dll via Crafted JT File
CVSS 7.8
CVE-2021-43539 HIGH
Thunderbird <91.4.0-Firefox <95 - Use After Free
CVSS 8.8
CVE-2021-43535 HIGH
Firefox <93, Thunderbird <91.3, Firefox ESR <91.3 - Use After Free
CVSS 8.8
CVE-2021-38504 HIGH
Firefox < 94, Thunderbird < 91.3, Firefox ESR < 91.3 - Use After Free
CVSS 8.8
CVE-2021-37045 CRITICAL
HarmonyOS < 2.0 - Use-After-Free
CVSS 9.8
CVE-2021-4069 HIGH
vim < 8.2.3741 - Use-After-Free
CVSS 7.8
CVE-2021-44047 HIGH
Open Design Alliance Drawings SDK < 2022.11 - Use-After-Free in DWF/DWFX File Parser
CVSS 7.8
CVE-2021-43790 HIGH
Lucet < 0.6.1 - Use-After-Free in Instance Object
CVSS 8.5
CVE-2021-38002 CRITICAL
Google Chrome <95.0.4638.69 - Use After Free
CVSS 9.6
CVE-2021-37998 HIGH
Google Chrome <95.0.4638.69 - Use After Free
CVSS 8.8
CVE-2021-37997 HIGH
Google Chrome <95.0.4638.69 - Use After Free
CVSS 8.8
CVE-2021-43582 HIGH
Open Design Alliance Drawings SDK <2022.11 - Use After Free
CVSS 7.8
CVE-2021-21900 HIGH
libdxfrw 2.2.0-rc2-19-ge02f3580 - Use-After-Free in dxfRW::processLType()
CVSS 8.8
Details
Vulnerabilities 7,660
Exploit Likelihood High