CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,660 vulnerabilities with CWE-416
CVE-2021-31188 HIGH
Windows Graphics Component - Use-After-Free Elevation of Privilege
CVSS 7.8
CVE-2021-31177 HIGH
Microsoft 365 Apps - Remote Code Execution via Use-After-Free
CVSS 7.8
CVE-2021-31176 HIGH
Microsoft 365 Apps and Office - Remote Code Execution via Use-After-Free
CVSS 7.8
CVE-2021-31175 HIGH
Microsoft 365 Apps and Office - Remote Code Execution via Use-After-Free
CVSS 7.8
CVE-2021-31170 HIGH
Windows 10 and Windows Server 2016/2019 - Use-After-Free in Graphics Component
CVSS 7.8
CVE-2021-31166 CRITICAL KEV
Windows IIS HTTP Protocol Stack DOS
CVSS 9.8
CVE-2021-21822 HIGH
Foxit Reader 10.1.3.37598 - Use-After-Free in JavaScript Engine
CVSS 8.8
CVE-2021-28663 HIGH KEV
Arm Bifrost/Midgard/Valhall GPU Kernel Driver - Use-After-Free in GPU Memory Operations
CVSS 8.8
CVE-2021-31470 HIGH
Foxitsoftware 3D < 9.7.4.29600 - Use After Free
CVSS 7.8
CVE-2021-31460 HIGH
Foxit PhantomPDF and Reader - Use-After-Free in XFA Template Processing
CVSS 7.8
CVE-2021-31459 HIGH
Foxit PhantomPDF and Reader - Use-After-Free in XFA Forms
CVSS 7.8
CVE-2021-31458 HIGH
Foxit PhantomPDF and Reader - Use-After-Free in Annotation Object Handling
CVSS 7.8
CVE-2021-31457 HIGH
Foxit PhantomPDF and Reader - Use-After-Free in Annotation Object Handling
CVSS 7.8
CVE-2021-31456 HIGH
Foxit PhantomPDF and Reader - Use-After-Free in Annotation Object Handling
CVSS 7.8
CVE-2021-31455 HIGH
Foxit Reader < 10.1.3.37598 and PhantomPDF < 9.7.5.29616 - Remote Code Execution via XFA Form Handling
CVSS 7.8
CVE-2021-31453 HIGH
Foxit Reader < 10.1.3.37598 and PhantomPDF < 9.7.5.29616 - Use-After-Free in XFA Forms
CVSS 7.8
CVE-2021-31451 HIGH
Foxit Reader < 10.1.3.37598 and PhantomPDF < 9.7.5.29616 - Use-After-Free in Annotation Object Handling
CVSS 7.8
CVE-2021-31450 HIGH
Foxit Reader < 10.1.3.37598 and PhantomPDF < 9.7.5.29616 - Remote Code Execution via XFA Form Handling
CVSS 7.8
CVE-2021-31441 HIGH
Foxit Reader < 10.1.3.37598 and PhantomPDF < 9.7.5.29616 - Remote Code Execution via Annotation Object Use-After-Free
CVSS 7.8
CVE-2021-1927 HIGH
Qualcomm APQ8009 and related firmware - Use-After-Free in FastRPC Driver
CVSS 8.4
CVE-2021-1905 HIGH KEV
Qualcomm APQ8009 and related firmware - Use-After-Free in Memory Mapping
CVSS 8.4
CVE-2021-1891 HIGH
Qualcomm APQ8009W Firmware - Use-After-Free in Audio Driver
CVSS 8.4
CVE-2021-20204 CRITICAL
getdata 0.10.0 - Use-After-Free in Dirfile Database Processing
CVSS 9.8
CVE-2021-21232 HIGH
Google Chrome <90.0.4430.93 - Use After Free
CVSS 8.8
CVE-2021-21417 HIGH
fluidsynth < 2.1.8 - Use-After-Free via Invalid SoundFont File
CVSS 7.2
Details
Vulnerabilities 7,660
Exploit Likelihood High