CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,670 vulnerabilities with CWE-416
CVE-2018-17618 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Selection Change Event
CVSS 8.8
CVE-2018-17617 HIGH
Foxit Reader < 9.1.0.5096 - Remote Code Execution via onFocus Event Handling
CVSS 8.8
CVE-2018-17616 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via onBlur Event Handling
CVSS 8.8
CVE-2018-17615 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Remote Code Execution via Mouse Exit Event Handler
CVSS 8.8
CVE-2018-4022 HIGH
MKVToolNix MKVINFO v25.0.0 - Use-After-Free via Crafted MKV File
CVSS 7.8
CVE-2018-11305 HIGH
Qualcomm Mdm9206 Firmware - Use After Free
CVSS 7.8
CVE-2018-15366 HIGH
Trend Micro Antivirus for Mac <7.0 - Privilege Escalation
CVSS 7.8
CVE-2018-18559 HIGH
Linux Kernel 3.2.95-4.19 - Use-After-Free via AF_PACKET Socket Race Condition
CVSS 8.1
CVE-2018-12378 CRITICAL
Redhat Enterprise Linux Desktop < 60.2.0 - Use After Free
CVSS 9.8
CVE-2018-12377 CRITICAL
Redhat Enterprise Linux Desktop < 60.2.0 - Use After Free
CVSS 9.8
CVE-2018-12363 HIGH
Thunderbird <60, Firefox ESR <60.1, Firefox <61 - Use After Free
CVSS 8.8
CVE-2018-12360 HIGH
Thunderbird <60-Firefox <61 - Use After Free
CVSS 8.8
CVE-2018-12822 CRITICAL
Adobe Digital Editions <4.5.8 - Use After Free
CVSS 9.8
CVE-2018-18408 CRITICAL
Tcpreplay 4.3.0 beta1 - Use-After-Free in post_args Function
CVSS 9.8
CVE-2018-15924 HIGH
Adobe Acrobat and Reader DC < 15.006.30452, 15.008.20082-18.011.20063 - Use-After-Free
CVSS 7.8
CVE-2018-15920 HIGH
Adobe Acrobat and Reader DC < 15.006.30452, 15.008.20082-18.011.20063 - Use-After-Free
CVSS 7.8
CVE-2018-12877 HIGH
Adobe Acrobat and Reader <2018.011.20063 - Use After Free
CVSS 7.8
CVE-2018-12863 HIGH
Adobe Acrobat and Reader <2018.011.20063 - Use After Free
CVSS 7.8
CVE-2018-12852 HIGH
Adobe Acrobat <2018.011.20063 - Use After Free
CVSS 7.8
CVE-2018-12831 HIGH
Adobe Acrobat and Reader <2018.011.20063 - Use After Free
CVSS 7.8
CVE-2018-12769 HIGH
Adobe Acrobat and Reader <2018.011.20063 - Use After Free
CVSS 7.8
CVE-2018-3997 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Use-After-Free via JavaScript Engine
CVSS 8.8
CVE-2018-3996 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Use-After-Free via JavaScript Engine
CVSS 8.8
CVE-2018-3992 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Use-After-Free in JavaScript Engine
CVSS 8.8
CVE-2018-3945 HIGH
Foxit PhantomPDF and Reader < 9.2.0.9297 - Use-After-Free in JavaScript Engine
CVSS 8.8
Details
Vulnerabilities 7,670
Exploit Likelihood High