CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,662 vulnerabilities with CWE-416
CVE-2020-9065 MEDIUM
Huawei Taurus-AL00B Firmware < 10.0.0.203(C00E201R7P2) - Authenticated Use-After-Free
CVSS 5.5
CVE-2020-6807 HIGH
Firefox < 74.0 and Firefox ESR < 68.6.0 - Use-After-Free via Stream Reinitialization
CVSS 8.8
CVE-2020-6805 HIGH
Firefox < 74.0 and Firefox ESR < 68.6.0 - Use-After-Free in Quota Manager
CVSS 8.8
CVE-2020-3805 CRITICAL
Adobe Acrobat and Reader <2020.006.20034 - Use After Free
CVSS 9.8
CVE-2020-3802 HIGH
Adobe Acrobat and Reader <2020.006.20034 - Use After Free
CVSS 8.8
CVE-2020-3801 CRITICAL
Adobe Acrobat and Reader <2020.006.20034 - Use After Free
CVSS 9.8
CVE-2020-3793 CRITICAL
Adobe Acrobat and Reader <2020.006.20034 - Use After Free
CVSS 9.8
CVE-2020-3792 CRITICAL
Adobe Acrobat and Reader <2020.006.20034 - Use After Free
CVSS 9.8
CVE-2020-10845 MEDIUM
Samsung mobile devices <10.0 - Use After Free
CVSS 6.4
CVE-2020-10838 HIGH
Samsung Mobile <P(9.0),Q(10.0) - Use After Free
CVSS 7.8
CVE-2020-6449 HIGH
Google Chrome < 80.0.3987.149 - Use-After-Free in Audio Component
CVSS 8.8
CVE-2020-6424 HIGH
Google Chrome <80.0.3987.149 - Use After Free
CVSS 8.8
CVE-2020-8881 HIGH
Foxit Studio Photo <3.6.6.916 - RCE
CVSS 8.8
CVE-2020-3947 HIGH
VMware Workstation <15.5.2, Fusion <11.5.2 - Use After Free
CVSS 8.8
CVE-2020-6208 HIGH
SAP Crystal Reports 4.1-4.2 - Authenticated Remote Code Execution via Use-After-Free
CVSS 8.2
CVE-2020-10018 CRITICAL
WebKitGTK and WPE WebKit < 2.28.0 - Use-After-Free
CVSS 9.8
CVE-2020-6386 HIGH
Google Chrome <80.0.3987.116 - Use After Free
CVSS 8.8
CVE-2020-6384 HIGH
Google Chrome <80.0.3987.116 - Use After Free
CVSS 8.8
CVE-2020-9273 HIGH
ProFTPD 1.3.7 - Use-After-Free in Memory Pool via Data Transfer Channel Interruption
CVSS 8.8
CVE-2020-8857 HIGH
Foxit Reader < 9.7.0.29478 and PhantomPDF < 9.7.0.29455 - Use-After-Free in AcroForms Annotation Parsing
CVSS 7.8
CVE-2020-8856 HIGH
Foxit Reader < 9.7.0.29478 and PhantomPDF < 9.7.0.29455 - Remote Code Execution via Watermark Handling
CVSS 7.8
CVE-2020-8855 HIGH
Foxit Reader < 9.7.0.29478 and PhantomPDF < 9.7.0.29455 - Remote Code Execution via Use-After-Free in fxhtml2pdf.exe
CVSS 7.8
CVE-2020-8846 HIGH
Foxit Reader and PhantomPDF - Use-After-Free in Text Field Object Handling
CVSS 7.8
CVE-2020-8845 HIGH
Foxit Reader < 9.7.0.29478 and PhantomPDF < 9.7.0.29455 - Use-After-Free in AcroForms Watermark Handling
CVSS 7.8
CVE-2020-3751 CRITICAL
Adobe Acrobat and Reader <2019.021.20061 - Use After Free
CVSS 9.8
Details
Vulnerabilities 7,662
Exploit Likelihood High