CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,662 vulnerabilities with CWE-416
CVE-2021-21232 HIGH
Google Chrome <90.0.4430.93 - Use After Free
CVSS 8.8
CVE-2021-21417 HIGH
fluidsynth < 2.1.8 - Use-After-Free via Invalid SoundFont File
CVSS 7.2
CVE-2021-21226 CRITICAL
Google Chrome <90.0.4430.85 - Use After Free
CVSS 9.6
CVE-2021-21214 HIGH
Google Chrome <90.0.4430.72 - Use After Free
CVSS 8.8
CVE-2021-21213 HIGH
Google Chrome <90.0.4430.72 - Use After Free
CVSS 8.8
CVE-2021-21207 HIGH
Google Chrome <90.0.4430.72 - Use After Free
CVSS 8.6
CVE-2021-21206 HIGH KEV
Google Chrome <89.0.4389.128 - Use After Free
CVSS 8.8
CVE-2021-21204 HIGH
Google Chrome <90.0.4430.72 - Use After Free
CVSS 8.8
CVE-2021-21203 HIGH
Google Chrome <90.0.4430.72 - Use After Free
CVSS 8.8
CVE-2021-21202 HIGH
Google Chrome <90.0.4430.72 - Use After Free
CVSS 8.6
CVE-2021-21201 CRITICAL
Google Chrome <90.0.4430.72 - Use After Free
CVSS 9.6
CVE-2021-31804 MEDIUM
LeoCAD < 21.03 - Use-After-Free during Document Opening
CVSS 5.5
CVE-2021-22893 CRITICAL KEV
Pulse Connect Secure >=9.0R3/9.1R1 - Auth Bypass
CVSS 10.0
CVE-2021-0270 HIGH
Juniper Junos OS 18.1R2-18.1R3-S10 - Denial of Service via Inline J-Flow Race Condition
CVSS 7.5
CVE-2021-0262 MEDIUM
Juniper Junos OS QFX10002-60C Use-After-Free in PFE Packet Processing
CVSS 6.5
CVE-2021-3497 HIGH
GStreamer < 1.18.4 - Use-After-Free in Matroska File Demuxing
CVSS 7.8
CVE-2021-27031 HIGH
Autodesk FBX Review < 1.5.0 - Use-After-Free via Malicious FBX File
CVSS 7.8
CVE-2021-28454 HIGH
Microsoft 365 Apps - Remote Code Execution via Use-After-Free
CVSS 7.8
CVE-2021-0442 HIGH
Android 11 - Use-After-Free in InputApplicationHandle
CVSS 7.8
CVE-2021-0429 HIGH
Android 8.1 9 10 11 - Use-After-Free in ALooper.cpp pollOnce
CVSS 7.8
CVE-2021-21199 HIGH
Google Chrome <89.0.4389.114 - Use After Free
CVSS 8.8
CVE-2021-21195 HIGH
Google Chrome <89.0.4389.114 - Use After Free
CVSS 8.8
CVE-2021-21194 HIGH
Google Chrome <89.0.4389.114 - Use After Free
CVSS 8.8
CVE-2021-29627 HIGH
FreeBSD 12.0-12.2 - Double Free in Accept Filter accf_create Callback
CVSS 7.8
CVE-2021-29626 MEDIUM
FreeBSD < 11.4-RELEASE p9, 12.2-RELEASE p6, 13.0-RC5 p1 - Unauthenticated Use-After-Free in Shared Memory Page Mappings
CVSS 5.5
Details
Vulnerabilities 7,662
Exploit Likelihood High