CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,670 vulnerabilities with CWE-416
CVE-2018-17636 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Use-After-Free via AliasNode ID Property
CVSS 8.8
CVE-2018-17635 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Desc Property Use-After-Free
CVSS 8.8
CVE-2018-17634 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Annotation attachIcon Use-After-Free
CVSS 8.8
CVE-2018-17633 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Annotation Object Handling
CVSS 8.8
CVE-2018-17632 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via resolveNode Event
CVSS 8.8
CVE-2018-17631 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via removeInstance Event
CVSS 8.8
CVE-2018-17630 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via openPlayer Method
CVSS 8.8
CVE-2018-17629 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Template Object Use-After-Free
CVSS 8.8
CVE-2018-17628 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via XFA setInterval Use-After-Free
CVSS 8.8
CVE-2018-17627 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via XFA mouseUp Event Use-After-Free
CVSS 8.8
CVE-2018-17626 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via TextBox Validate Event
CVSS 8.8
CVE-2018-17625 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via setInterval() Use-After-Free
CVSS 8.8
CVE-2018-19017 HIGH
CX-Supervisor <= 3.42 - Use-After-Free in Project File Processing
CVSS 8.8
CVE-2018-19715 CRITICAL
Adobe Acrobat <2019.008.20081 - Use After Free
CVSS 9.8
CVE-2018-19713 HIGH
Adobe Acrobat <2019.008.20081 - Use After Free
CVSS 8.8
CVE-2018-19708 CRITICAL
Adobe Acrobat <2019.008.20081 - Use After Free
CVSS 9.8
CVE-2018-19707 CRITICAL
Adobe Acrobat <2019.008.20081 - Use After Free
CVSS 9.8
CVE-2018-19700 CRITICAL
Adobe Acrobat <2019.008.20081 - Use After Free
CVSS 9.8
CVE-2018-19698 CRITICAL
Adobe Acrobat <2019.008.20081 - Use After Free
CVSS 9.8
CVE-2018-16046 HIGH
Adobe Acrobat and Reader DC < 15.006.30457, 15.008.20082-19.008.20081 - Use-After-Free
CVSS 8.8
CVE-2018-16040 CRITICAL
Adobe Acrobat and Reader DC < 15.006.30457 and 15.008.20082-19.008.20081 - Use-After-Free
CVSS 9.8
CVE-2018-16039 CRITICAL
Adobe Acrobat and Reader DC < 15.006.30457, 15.008.20082-19.008.20081 - Use-After-Free
CVSS 9.8
CVE-2018-16037 CRITICAL
Adobe Acrobat and Reader DC < 15.006.30457, 15.008.20082-19.008.20081 - Use-After-Free
CVSS 9.8
CVE-2018-16036 CRITICAL
Adobe Acrobat and Reader DC < 15.006.30457 and 15.008.20082-19.008.20081 - Use-After-Free
CVSS 9.8
CVE-2018-16029 HIGH
Adobe Acrobat and Reader DC < 15.006.30457 and 15.008.20082-19.008.20081 - Use-After-Free
CVSS 8.8
Details
Vulnerabilities 7,670
Exploit Likelihood High