CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,660 vulnerabilities with CWE-416
CVE-2021-30562 HIGH
Google Chrome <91.0.4472.164 - Use After Free
CVSS 8.8
CVE-2021-30560 HIGH
Google Chrome <91.0.4472.164 - Use After Free
CVSS 8.8
CVE-2021-30541 HIGH
Google Chrome <91.0.4472.164 - Use After Free
CVSS 8.8
CVE-2021-22390 CRITICAL
Huawei Smartphone - Memory Corruption
CVSS 9.8
CVE-2021-29657 HIGH
Linux Kernel 5.10-5.10.28 - Use-After-Free via Nested SVM VMCB12 Double Fetch
CVSS 7.4
CVE-2021-37159 MEDIUM
Linux Kernel < 5.13.4 - Use-After-Free in hso_free_net_device
CVSS 6.4
CVE-2021-36980 MEDIUM
Openvswitch < 2.15.0 - Use After Free
CVSS 5.5
CVE-2021-36976 MEDIUM
libarchive 3.4.1-3.5.1 - Use-After-Free in copy_string
CVSS 6.5
CVE-2021-34498 HIGH
Windows GDI - Use-After-Free Elevation of Privilege
CVSS 7.8
CVE-2021-0587 HIGH
Android 8.1-11 - Use-After-Free in StreamOut::prepareForWriting
CVSS 7.8
CVE-2021-34330 HIGH
Siemens JT2Go and Teamcenter Visualization < 13.2.0 - Remote Code Execution via JT File Parsing
CVSS 7.8
CVE-2021-34324 HIGH
Siemens JT2Go and Teamcenter Visualization < 13.2.0 - Remote Code Execution via JT File Parsing
CVSS 7.8
CVE-2021-34301 HIGH
Siemens JT2Go and Teamcenter Visualization < 13.2.0 - Remote Code Execution via BMP File Parsing
CVSS 7.8
CVE-2021-34298 HIGH
Siemens JT2Go and Teamcenter Visualization < 13.2.0 - Remote Code Execution via BMP File Parsing
CVSS 7.8
CVE-2021-1940 HIGH
Qualcomm AQT1000 Firmware - Use-After-Free
CVSS 8.4
CVE-2021-27037 HIGH
Autodesk Design Review 2011-2018 - Use-After-Free in PNG/PDF/DWF File Parsing
CVSS 7.8
CVE-2021-21806 HIGH
WebKitGTK 2.30.3 - Use-After-Free via Crafted HTML Web Page
CVSS 8.8
CVE-2021-21779 HIGH
WebKitGTK 2.30.4 - Use-After-Free in GraphicsContext
CVSS 8.8
CVE-2021-21775 HIGH
WebKitGTK 2.30.4 - Use-After-Free in ImageLoader Event Processing
CVSS 8.0
CVE-2021-36145 HIGH
ACRN < 2.5 - Use-After-Free in Device Model Memory Management
CVSS 7.5
CVE-2021-36144 HIGH
ACRN < 2.5 - Use-After-Free in Polling Timer Handler
CVSS 7.5
CVE-2021-30557 HIGH
Google Chrome <91.0.4472.114 - Use After Free
CVSS 8.8
CVE-2021-30556 HIGH
Google Chrome <91.0.4472.114 - Use After Free
CVSS 8.8
CVE-2021-30555 HIGH
Google Chrome <91.0.4472.114 - Use After Free
CVSS 8.8
CVE-2021-30554 HIGH KEV
Google Chrome <91.0.4472.114 - Use After Free
CVSS 8.8
Details
Vulnerabilities 7,660
Exploit Likelihood High