CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,662 vulnerabilities with CWE-416
CVE-2020-9996 HIGH
iPadOS < 14.0 - Use-After-Free
CVSS 7.8
CVE-2020-9981 HIGH
iCloud < 11.5 - Use-After-Free
CVSS 7.8
CVE-2020-9950 HIGH
Safari < 14.0 - Use-After-Free
CVSS 8.8
CVE-2020-9949 HIGH
iPadOS < 14.0 - Use-After-Free
CVSS 7.8
CVE-2020-9947 HIGH
iCloud < 11.5.0 - Use-After-Free
CVSS 8.8
CVE-2020-14381 HIGH
Linux Kernel < 5.6 - Use-After-Free in Futex Implementation
CVSS 7.8
CVE-2020-14351 HIGH
Linux Kernel < 5.8.17 - Use-After-Free in Perf Subsystem
CVSS 7.8
CVE-2020-13584 HIGH
WebKitGTK 2.30.1 - Use-After-Free via Crafted HTML Web Page
CVSS 8.8
CVE-2020-13543 HIGH
WebKitGTK 2.30.0 - Remote Code Execution via WebSocket Use-After-Free
CVSS 8.8
CVE-2020-13531 HIGH
Pixar OpenUSD <20.08 - Use After Free
CVSS 8.8
CVE-2020-25656 MEDIUM
Linux Kernel < 5.10 - Use-After-Free in Console Subsystem via KDGKBSENT and KDSKBSENT ioctls
CVSS 4.1
CVE-2020-27207 HIGH
Zetetic SQLCipher <4.4.1 - Use After Free
CVSS 7.5
CVE-2020-15436 MEDIUM
Linux Kernel < 4.4.229 - Use After Free
CVSS 6.7
CVE-2020-25725 MEDIUM
Xpdf 4.02 - Use-After-Free in SplashOutputDev Type 3 Char Handling
CVSS 5.0
CVE-2020-4004 HIGH
VMware Fusion 11.0-11.5.6 - Use-After-Free in XHCI USB Controller
CVSS 8.2
CVE-2020-28951 CRITICAL
OpenWrt < 18.06.9 - Use-After-Free in libuci Package Name Parsing
CVSS 9.8
CVE-2020-8750 HIGH
Intel(R) TXE <3.1.80, 4.0.30 - Privilege Escalation
CVSS 7.8
CVE-2020-12303 HIGH
Intel Converged Security and Manageability Engine < 11.8.80 - Authenticated Use-After-Free in DAL Subsystem
CVSS 7.8
CVE-2020-11175 HIGH
Qualcomm Snapdragon Firmware - Use-After-Free in Bluetooth Transport Driver
CVSS 7.8
CVE-2020-0449 HIGH
Android - Use-After-Free in btm_sec_disconnected
CVSS 8.8
CVE-2020-24438 LOW
Acrobat Reader DC <2020.012.20048, 2020.001.30005, 2017.011.30175 -...
CVSS 3.3
CVE-2020-24437 HIGH
Acrobat Reader DC <2020.012.20048 - Use After Free
CVSS 7.8
CVE-2020-24430 HIGH
Acrobat Reader DC <2020.012.20048, 2020.001.30005, 2017.011.30175 -...
CVSS 7.8
CVE-2020-1909 CRITICAL
WhatsApp and WhatsApp Business < 2.20.111 - Use-After-Free via Animated Sticker Handling
CVSS 9.8
CVE-2020-16004 HIGH
Google Chrome < 86.0.4240.183 - Use-After-Free in User Interface
CVSS 8.8
Details
Vulnerabilities 7,662
Exploit Likelihood High