CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,670 vulnerabilities with CWE-416
CVE-2018-4314 HIGH
Safari < 12 - Use-After-Free
CVSS 8.8
CVE-2018-4312 HIGH
Safari < 12 - Use-After-Free
CVSS 8.8
CVE-2018-4306 HIGH
Safari < 12 - Use-After-Free
CVSS 8.8
CVE-2018-4197 HIGH
Safari < 12 - Use-After-Free
CVSS 8.8
CVE-2018-18091 MEDIUM
Intel Graphics Driver - Use-After-Free in Kernel Mode Driver
CVSS 6.5
CVE-2018-18492 CRITICAL
Firefox < 64 - Use-After-Free in Selection Element Deletion
CVSS 9.8
CVE-2018-13905 HIGH
Qualcomm Mdm9206 Firmware - Use After Free
CVSS 7.8
CVE-2018-13900 HIGH
Qualcomm Mdm9150 Firmware - Use After Free
CVSS 7.8
CVE-2018-6268 HIGH
Android - Use-After-Free in libnvmmlite_video.so
CVSS 7.8
CVE-2018-13889 HIGH
Android - Use-After-Free in Heap Memory Access
CVSS 7.8
CVE-2018-12014 HIGH
Android - Null Pointer Dereference in NAT Module
CVSS 7.8
CVE-2018-11962 HIGH
Android - Use-After-Free in Audio Effects Factory
CVSS 7.8
CVE-2018-7817 HIGH
Zelio Soft 2 < 5.1 - Remote Code Execution via Crafted Project File
CVSS 7.8
CVE-2018-18500 CRITICAL
Firefox < 65.0 - Use-After-Free in HTML5 Stream Parser
CVSS 9.8
CVE-2018-17705 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via CheckBox Display Property Handling
CVSS 8.8
CVE-2018-17704 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via RadioButton textColor Property
CVSS 8.8
CVE-2018-17703 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via ComboBox defaultValue Property
CVSS 8.8
CVE-2018-17702 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Button Object richValue Property
CVSS 8.8
CVE-2018-17698 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Text Field richValue Property
CVSS 8.8
CVE-2018-17697 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Template Handling Use-After-Free
CVSS 8.8
CVE-2018-17696 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Use-After-Free in dataObjects
CVSS 8.8
CVE-2018-17695 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via TextField Username Property
CVSS 8.8
CVE-2018-17694 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Button Display Property
CVSS 8.8
CVE-2018-17691 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via HTML to PDF Conversion
CVSS 8.8
CVE-2018-17690 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Link Object Rect Property
CVSS 8.8
Details
Vulnerabilities 7,670
Exploit Likelihood High