CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,670 vulnerabilities with CWE-416
CVE-2019-6822 HIGH
Zelio Soft 2 <= 5.2 - Remote Code Execution via Crafted Project File
CVSS 7.8
CVE-2019-13224 CRITICAL
Oniguruma 6.9.2 - Use-After-Free in onig_new_deluxe()
CVSS 9.8
CVE-2019-2112 HIGH
Android 8.0-9 - Use-After-Free in alarm.cc
CVSS 7.8
CVE-2019-2111 CRITICAL
Android - Use-After-Free in DnsTlsSocket.cpp
CVSS 9.8
CVE-2019-13289 HIGH
Glyphandcog Xpdfreader - Use After Free
CVSS 7.8
CVE-2019-13233 HIGH
Linux Kernel < 5.1.9 - Use-After-Free via Race Condition in LDT Entry Access
CVSS 7.0
CVE-2019-13045 HIGH
irssi < 1.0.8, 1.1.x < 1.1.3, 1.2.x < 1.2.1 - Use-After-Free via SASL Login
CVSS 8.1
CVE-2019-5828 HIGH
Google Chrome < 75.0.3770.80 - Use-After-Free in ServiceWorker
CVSS 8.8
CVE-2019-5813 HIGH
Google Chrome < 74.0.3729.108 - Use-After-Free in V8
CVSS 8.8
CVE-2019-5809 HIGH
Google Chrome < 74.0.3729.108 - Use-After-Free in File Chooser
CVSS 8.8
CVE-2019-5808 HIGH
Google Chrome < 74.0.3729.108 - Use-After-Free in Blink
CVSS 8.8
CVE-2019-5805 MEDIUM
Google Chrome < 74.0.3729.108 - Use-After-Free in PDFium via Crafted PDF File
CVSS 6.5
CVE-2019-5786 MEDIUM KEV
Google Chrome < 72.0.3626.121 - Use-After-Free in Blink via Crafted HTML Page
CVSS 6.5
CVE-2019-12871 HIGH
Phoenixcontact Automationworx Software Suite < 1.86 - Use After Free
CVSS 8.8
CVE-2019-2025 HIGH
Android - Use-After-Free in binder_thread_read
CVSS 7.8
CVE-2019-2024 HIGH
Android - Use-After-Free in em28xx_dvb
CVSS 7.8
CVE-2019-2006 CRITICAL
Android 9 - Use-After-Free in HalDeathHandlerHidl.cpp serviceDied
CVSS 9.8
CVE-2019-3896 HIGH
Linux Kernel 2.6.0-2.6.39.3 - Double Free in idr_remove_all()
CVSS 7.0
CVE-2019-12819 MEDIUM
Linux Kernel < 5.0 - Use-After-Free in MDIO Bus Registration
CVSS 5.5
CVE-2019-12802 HIGH
radare2 <= 3.5.1 - Use-After-Free in rcc_context
CVSS 7.8
CVE-2019-7845 HIGH
Adobe Flash Player <32.0.0.192 - Use After Free
CVSS 8.8
CVE-2019-0196 MEDIUM
Apache HTTP Server 2.4.17-2.4.38 - Use-After-Free in HTTP/2 Request Handling
CVSS 5.3
CVE-2019-2095 HIGH
Android - Use-After-Free in SkPixelRef.cpp via Race Condition
CVSS 7.0
CVE-2019-5525 HIGH
VMware Workstation 15.0.0-15.0.9 - Use-After-Free in ALSA Backend
CVSS 8.8
CVE-2019-5214 MEDIUM
Huawei Mate10 <ALP-AL00B 9.0.0.167(C00E85R2P20T8 - Use After Free
CVSS 5.5
Details
Vulnerabilities 7,670
Exploit Likelihood High