CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,662 vulnerabilities with CWE-416
CVE-2021-1788 HIGH
iPadOS < 14.4 - Use-After-Free via Malicious Web Content
CVSS 8.8
CVE-2021-1764 HIGH
iPadOS < 14.4 - Use-After-Free
CVSS 7.5
CVE-2021-29935 HIGH
rocket < 0.4.7 - Use-After-Free in uri::Formatter
CVSS 7.3
CVE-2021-27268 HIGH
Foxit PhantomPDF 10.1.0.37527 - RCE
CVSS 7.8
CVE-2021-27267 HIGH
Foxit PhantomPDF 10.1.0.37527 - RCE
CVSS 7.8
CVE-2021-29266 HIGH
Linux Kernel 5.8-5.10.25 - Use-After-Free in vhost vdpa Driver
CVSS 7.8
CVE-2021-25370 MEDIUM KEV
dpu driver <SMR Mar-2021 Release 1 - Memory Corruption
CVSS 6.1
CVE-2021-29093 MEDIUM
Esri ArcGIS Server < 10.8.1 - Authenticated Use-After-Free via Crafted File Parsing
CVSS 6.8
CVE-2021-29096 HIGH
Esri ArcGIS Engine < 10.8.1, ArcGIS Pro < 2.7, ArcMap < 10.8.1, ArcReader < 10.8.1 - Use-After-Free via Crafted File
CVSS 7.8
CVE-2021-3392 LOW
QEMU 2.10.0-5.2.0 - Use-After-Free in MegaRAID SCSI I/O Request Handling
CVSS 3.2
CVE-2021-20227 MEDIUM
SQLite 3.33.0-3.34.0 - Use-After-Free in SELECT Query Processing
CVSS 5.5
CVE-2021-22321 MEDIUM
Huawei NIP6300-NIP6800 S1700-S9700 Secospace USG6300-USG9500 Use-After-Free
CVSS 5.3
CVE-2021-21193 HIGH KEV
Google Chrome <89.0.4389.90 - Use After Free
CVSS 8.8
CVE-2021-21191 HIGH
Google Chrome <89.0.4389.90 - Use After Free
CVSS 8.8
CVE-2021-20232 CRITICAL
GnuTLS 3.6.3-3.7.0 - Use-After-Free in client_send_params
CVSS 9.8
CVE-2021-20231 CRITICAL
GnuTLS 3.6.3-3.7.0 - Use-After-Free in Key Share Extension Handling
CVSS 9.8
CVE-2021-28305 CRITICAL
diesel < 1.4.6 - Use-After-Free in SQLite Backend
CVSS 9.8
CVE-2021-27646 CRITICAL
Synology DSM <6.2.3-25426-3 - Use After Free
CVSS 9.8
CVE-2021-26900 HIGH
Windows 10 and Windows Server 2016 - Use-After-Free in Win32k
CVSS 7.8
CVE-2021-26411 HIGH KEV
Microsoft Edge - Use After Free
CVSS 8.8
CVE-2021-21772 HIGH
lib3mf 2.0.0 - Use-After-Free in NMR::COpcPackageReader::releaseZIP()
CVSS 8.1
CVE-2021-0399 HIGH
Android - Use-After-Free in qtaguid_untag
CVSS 7.8
CVE-2021-0395 HIGH
Android 11 - Use-After-Free in StopServicesAndLogViolations
CVSS 7.8
CVE-2021-21188 HIGH
Google Chrome <89.0.4389.72 - Use After Free
CVSS 8.8
CVE-2021-21180 HIGH
Google Chrome <89.0.4389.72 - Use After Free
CVSS 8.8
Details
Vulnerabilities 7,662
Exploit Likelihood High