CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,670 vulnerabilities with CWE-416
CVE-2018-6171 MEDIUM
Google Chrome <68.0.3440.75 - Use After Free
CVSS 5.7
CVE-2018-6155 MEDIUM
Google Chrome <68.0.3440.75 - Heap Corruption
CVSS 6.5
CVE-2018-6118 HIGH
Google Chrome <66.0.3359.139 - Use After Free
CVSS 8.8
CVE-2018-17479 HIGH
Google Chrome <70.0.3538.110 - Heap Corruption
CVSS 8.8
CVE-2018-19878 MEDIUM
Teltonika RTU950 R_31.04.89 - Info Disclosure
CVSS 6.5
CVE-2018-19444 HIGH
Foxit Reader SDK <5.4.0.1031 - Use After Free
CVSS 7.8
CVE-2018-13919 HIGH
Qualcomm Multiple Chipsets Firmware Use-After-Free Vulnerability
CVSS 7.8
CVE-2018-11939 HIGH
Snapdragon Auto/Mobile/Industrial IOT - Use After Free
CVSS 7.8
CVE-2018-11819 HIGH
Snapdragon Auto/Mobile/Industrial IOT - Use After Free
CVSS 7.8
CVE-2018-20356 CRITICAL
Cesanta Mongoose < 6.13 - Use-After-Free in mg_http_free_proto_data_cgi
CVSS 9.8
CVE-2018-20355 CRITICAL
Cesanta Mongoose < 6.13 - Use-After-Free in mg_http_free_proto_data_cgi
CVSS 9.8
CVE-2018-20354 CRITICAL
Cesanta Mongoose < 6.13 - Use-After-Free in mg_http_get_proto_data
CVSS 9.8
CVE-2018-20353 CRITICAL
Cesanta Mongoose < 6.13 - Use-After-Free in mg_http_get_proto_data
CVSS 9.8
CVE-2018-20352 HIGH
Cesanta Mongoose Embedded Web Server Library < 6.13 - Use-After-Free in mg_cgi_ev_handler
CVSS 8.8
CVE-2018-19452 HIGH
Foxit Reader SDK (ActiveX) Pro 5.4.0.1031 - Use After Free
CVSS 7.8
CVE-2018-13925 CRITICAL
Qualcomm Multiple Chipsets - Use-After-Free in PMT Table Parsing
CVSS 9.8
CVE-2018-13920 HIGH
Qualcomm Multiple Chipsets Firmware - Use-After-Free in PMU Driver hrtimers Handling
CVSS 7.8
CVE-2018-13899 HIGH
Qualcomm Snapdragon Firmware - Use-After-Free in Message Processing
CVSS 7.8
CVE-2018-12005 MEDIUM
Qualcomm Snapdragon Firmware - Use-After-Free via Binder Call
CVSS 5.5
CVE-2018-20836 HIGH
Linux Kernel < 4.20 - Use-After-Free via Race Condition in SAS Expander
CVSS 8.1
CVE-2018-18512 CRITICAL
Thunderbird < 60.5 - Use-After-Free in Sound Notification
CVSS 9.8
CVE-2018-4347 HIGH
Apple iPhone OS < 12.0 - Use-After-Free
CVSS 7.8
CVE-2018-4318 HIGH
Safari < 12 - Use-After-Free
CVSS 8.8
CVE-2018-4317 HIGH
Safari < 12 - Use-After-Free
CVSS 8.8
CVE-2018-4315 HIGH
Safari < 12 - Use-After-Free
CVSS 8.8
Details
Vulnerabilities 7,670
Exploit Likelihood High