CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,660 vulnerabilities with CWE-416
CVE-2021-22940 HIGH
Node.js <16.6.1, 14.17.5, 12.22.5 - Use After Free
CVSS 7.5
CVE-2021-37690 MEDIUM
TensorFlow 2.3.0-2.3.3 - Use-After-Free in Shape Function Output Handling
CVSS 6.6
CVE-2021-37652 HIGH
TensorFlow 2.3.0-2.3.3 - Use-After-Free in BoostedTreesCreateEnsemble
CVSS 7.8
CVE-2021-34486 HIGH KEV
Windows 10 1809-21H1 and Windows Server 2019-20H2 - Use-After-Free in Event Tracing
CVSS 7.8
CVE-2021-1114 MEDIUM
NVIDIA Linux Kernel - Use After Free
CVSS 4.4
CVE-2021-0012 MEDIUM
Intel Graphics Driver < 15.40.47.5166 and < 27.20.100.9030 - Use-After-Free
CVSS 5.5
CVE-2021-38383 CRITICAL
owntone_server < 28.1 - Use-After-Free in net_bind()
CVSS 9.8
CVE-2021-38382 MEDIUM
live555 < 2021.08.06 - Use-After-Free via RTSP SETUP Command
CVSS 6.5
CVE-2021-38381 MEDIUM
live555 < 2021.08.09 - Use-After-Free via RTSP SETUP Command
CVSS 6.5
CVE-2021-37179 HIGH
Solid Edge SE2021 < SE2021MP7 - Use-After-Free in PSKERNEL.dll OBJ File Parser
CVSS 7.8
CVE-2021-38204 MEDIUM
Linux Kernel < 5.13.6 - Use-After-Free in MAX-3421 USB Device Driver
CVSS 6.8
CVE-2021-21893 HIGH
Foxit PDF Reader 11.0.0.49893 - Use-After-Free in JavaScript Engine
CVSS 8.8
CVE-2021-21870 HIGH
Foxit PDF Reader 10.1.4.37651 - Use-After-Free in JavaScript Engine
CVSS 8.8
CVE-2021-21831 HIGH
Foxit PDF Reader 10.1.3.37598 - Use-After-Free in JavaScript Engine
CVSS 8.8
CVE-2021-29972 HIGH
Firefox < 90.0 - Use-After-Free via Out-of-Date Cairo Library
CVSS 8.8
CVE-2021-29970 HIGH
Thunderbird <78.12, Firefox ESR <78.12, Firefox <90 - Use After Free
CVSS 8.8
CVE-2021-25443 MEDIUM
conn_gadget <SMR AUG-2021 Release 1 - Use After Free
CVSS 5.3
CVE-2021-34853 HIGH
Foxit PDF Reader < 11.0.0.49893 and PDF Editor < 10.1.4.37651 - Remote Code Execution via Annotation Object Handling
CVSS 7.8
CVE-2021-34852 HIGH
Foxit PDF Reader < 11.0.0.49893 - Remote Code Execution via Annotation Object Handling
CVSS 7.8
CVE-2021-34851 HIGH
Foxit PDF Reader < 11.0.0.49893 - Remote Code Execution via Annotation Object Handling
CVSS 7.8
CVE-2021-34850 HIGH
Foxit PDF Reader < 11.0.0.49893 and PDF Editor < 10.1.4.37651 - Remote Code Execution via Annotation Object Handling
CVSS 7.8
CVE-2021-34849 HIGH
Foxit PDF Reader < 11.0.0.49893 and PDF Editor < 10.1.4.37651 - Use-After-Free in Annotation Object Handling
CVSS 7.8
CVE-2021-34848 HIGH
Foxit PDF Reader < 11.0.0.49893 and PDF Editor < 10.1.4.37651 - Remote Code Execution via Annotation Object Handling
CVSS 7.8
CVE-2021-34847 HIGH
Foxit PDF Reader < 11.0.0.49893 - Remote Code Execution via Annotation Object Handling
CVSS 7.8
CVE-2021-34846 HIGH
Foxit PDF Reader < 11.0.0.49893 - Remote Code Execution via Annotation Object Handling
CVSS 7.8
Details
Vulnerabilities 7,660
Exploit Likelihood High