CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,670 vulnerabilities with CWE-416
CVE-2019-10518 HIGH
Qualcomm APQ8009 and related firmware - Use-After-Free in iWLAN Netmgr State Transition
CVSS 7.8
CVE-2019-3994 HIGH
elog < 3.1.4-57bea22 - Unauthenticated Denial of Service via HTTP POST Request Handling
CVSS 7.5
CVE-2019-19813 MEDIUM
Linux Kernel - Use-After-Free in Btrfs Syncfs Operation
CVSS 5.5
CVE-2019-19807 HIGH
Linux Kernel 4.9.199-4.9.200 - Use-After-Free in Sound Timer Component
CVSS 7.8
CVE-2019-19770 HIGH
Linux Kernel < 4.19.83 - Use-After-Free in debugfs_remove
CVSS 8.2
CVE-2019-19769 MEDIUM
Linux Kernel < 5.3.10 - Use-After-Free in perf_trace_lock_acquire
CVSS 6.7
CVE-2019-19768 HIGH
Linux Kernel 5.4.0-rc2 - Use-After-Free in blktrace
CVSS 7.5
CVE-2019-19767 MEDIUM
Linux Kernel < 5.4.2 - Use-After-Free in ext4_expand_extra_isize
CVSS 5.5
CVE-2019-10494 HIGH
Qualcomm Snapdragon Firmware - Use-After-Free via Camera Resource Race Condition
CVSS 8.1
CVE-2019-10484 MEDIUM
Qualcomm Snapdragon Firmware - Use-After-Free in Command Destructor
CVSS 5.5
CVE-2019-13732 HIGH
Google Chrome <79.0.3945.79 - Use After Free
CVSS 8.8
CVE-2019-13729 HIGH
Google Chrome <79.0.3945.79 - Use After Free
CVSS 8.8
CVE-2019-13725 HIGH
Google Chrome <79.0.3945.79 - Memory Corruption
CVSS 8.8
CVE-2019-19448 HIGH
Linux kernel 5.0.21-5.3.11 - Use After Free
CVSS 7.8
CVE-2019-19447 HIGH
Linux kernel 5.0.21 - Use After Free
CVSS 7.8
CVE-2019-2230 HIGH
Android 10 - Use-After-Free in NativeNfcManager.cpp
CVSS 7.5
CVE-2019-2217 HIGH
Android 10 - Use-After-Free in GpuStats.cpp
CVSS 7.8
CVE-2019-19590 HIGH
radare2 < 4.0.0 - Use-After-Free via Integer Overflow in r_asm_massemble
CVSS 7.8
CVE-2019-11940 CRITICAL
Proxygen <2017.04.03.00 - Use After Free
CVSS 9.8
CVE-2019-5096 CRITICAL
GoAhead <v5.0.1,v4.1.1,v3.6.5 - Code Injection
CVSS 9.8
CVE-2019-19543 HIGH
Linux kernel <5.1.6 - Use After Free
CVSS 7.8
CVE-2019-19531 MEDIUM
Linux kernel <5.2.9 - Use After Free
CVSS 6.8
CVE-2019-19530 MEDIUM
Linux kernel <5.2.10 - Use After Free
CVSS 4.6
CVE-2019-19529 MEDIUM
Linux kernel <5.3.11 - Use After Free
CVSS 6.3
CVE-2019-19528 MEDIUM
Linux kernel <5.3.7 - Use After Free
CVSS 6.1
Details
Vulnerabilities 7,670
Exploit Likelihood High