The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
7,670 vulnerabilities with CWE-416
CVE-2019-9431
MEDIUM
Android 10 - Out-of-Bounds Read in Bluetooth via Use-After-Free
CVSS 4.9
CVE-2019-9427
MEDIUM
Android 10 - Use-After-Free in Bluetooth
CVSS 5.5
CVE-2019-9381
HIGH
Android 10 - Out-of-bounds Read in netd
CVSS 7.5
CVE-2019-9350
HIGH
Android 10 - Use-After-Free in Keymaster
CVSS 7.8
CVE-2019-9347
MEDIUM
Android 10 - Out-of-bounds Read in m4v_h263 Codec
CVSS 5.5
CVE-2019-9268
MEDIUM
Android 10 - Use-After-Free in libstagefright
CVSS 5.5
CVE-2019-9259
MEDIUM
Android 10 - Use-After-Free in Bluetooth Stack
CVSS 6.7
CVE-2019-11752
HIGH
Firefox < 69 and Firefox ESR < 60.9 - Use-After-Free in IndexedDB Key Conversion
CVSS 8.8
CVE-2019-11746
HIGH
Firefox < 69 and Firefox ESR < 60.9, 68.1 - Use-After-Free in Video Element Handling
CVSS 8.8
CVE-2019-10082
CRITICAL
Apache HTTP Server <2.4.40 - Use After Free
CVSS 9.1
CVE-2019-16882
HIGH
string-interner <0.7.1 - Memory Corruption
CVSS 7.5
CVE-2019-16881
CRITICAL
portaudio-rs <0.3.1 - Use After Free
CVSS 9.8
CVE-2019-10996
HIGH
Red Lion Controls Crimson < 3.0 and 3.1 < 3112.00 - Use-After-Free via Malicious Input File
CVSS 7.8
CVE-2019-16510
HIGH
libIEC61850 <1.3.3 - Use After Free
CVSS 7.5
CVE-2019-11778
MEDIUM
Eclipse Mosquitto <1.6.5 - Use After Free
CVSS 5.4
CVE-2019-5067
CRITICAL
Aspose.PDF 19.2 - Memory Corruption
CVSS 9.8
CVE-2019-5066
CRITICAL
Aspose.PDF for C++ - Use-After-Free in LZW-Compressed Stream Processing
CVSS 9.8
CVE-2019-5042
HIGH
Aspose.PDF for C++ - Use-After-Free via FunctionType 0 PDF Element Processing
CVSS 8.8
CVE-2019-16396
HIGH
GnuCOBOL 2.2 - Use-After-Free in end_scope_of_program_name
CVSS 7.8
CVE-2019-8070
CRITICAL
Adobe Flash Player < 32.0.0.238 - Use-After-Free
CVSS 9.8
CVE-2019-1208
HIGH
Internet Explorer - Remote Code Execution via VBScript Engine Use-After-Free
CVSS 7.5
CVE-2019-16165
MEDIUM
GNU cflow < 1.6 - Use-After-Free in Parser Reference Function
CVSS 6.5
CVE-2019-16140
CRITICAL
isahc - Use-After-Free in Buffer Conversion
CVSS 9.8
CVE-2019-16138
CRITICAL
image crate <0.21.3 - Code Injection
CVSS 9.8
CVE-2019-9458
HIGH
Android - Use-After-Free via Video Driver Race Condition
CVSS 7.0
Details
Vulnerabilities
7,670
Exploit Likelihood
High