CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,671 vulnerabilities with CWE-416
CVE-2018-9944 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via addLink Method
CVSS 8.8
CVE-2018-9935 HIGH
Foxit PhantomPDF 8.0-8.3.2.25013 and Foxit Reader <9.0.1.1049 - Remote Code Execution via addField Method
CVSS 8.8
CVE-2018-1180 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via AFSimple_Calculate Use-After-Free
CVSS 8.8
CVE-2018-1178 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via addField Method Use-After-Free
CVSS 8.8
CVE-2018-1177 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via addAnnot Method Use-After-Free
CVSS 8.8
CVE-2018-1173 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via XFA borderColor Attribute
CVSS 8.8
CVE-2018-11230 HIGH
jbig2enc 0.29 - Use-After-Free in jbig2_add_page
CVSS 8.8
CVE-2018-8843 MEDIUM
Rockwell Automation Arena <15.10.00 - Use After Free
CVSS 5.5
CVE-2018-0946 HIGH
Microsoft Edge and ChakraCore - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2018-10685 CRITICAL
Long Range Zip 0.631 - Use-After-Free in lzma_decompress_buf
CVSS 9.8
CVE-2018-10675 HIGH
Linux Kernel < 4.12.9 - Use-After-Free in do_get_mempolicy
CVSS 7.8
CVE-2018-3844 HIGH
Hyland Perceptive Document Filters 11.4.0.2647 - Use-After-Free via Crafted DOCX Document
CVSS 8.8
CVE-2018-10303 HIGH
Foxit Reader and PhantomPDF < 9.1 - Remote Code Execution via Use-After-Free
CVSS 8.8
CVE-2018-10302 HIGH
Foxit Reader and PhantomPDF < 9.1 - Remote Code Execution via Use-After-Free
CVSS 7.8
CVE-2018-3850 HIGH
Foxit PDF Reader 9.0.1.1049 - Use-After-Free in JavaScript Engine
CVSS 8.8
CVE-2018-10199 CRITICAL
mruby <= 1.4.0 - Use-After-Free in File#initialize_copy
CVSS 9.8
CVE-2018-10119 HIGH
LibreOffice <5.4.5.1-6.0.1.1 - Use After Free
CVSS 7.8
CVE-2018-3590 CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - Use-After-Free in RIL
CVSS 9.8
CVE-2018-5826 MEDIUM
Qualcomm Android <2018-04-05 - Use After Free
CVSS 5.9
CVE-2018-5825 HIGH
Qualcomm Android <2018-04-05 - Use After Free
CVSS 7.8
CVE-2018-3599 CRITICAL
Qualcomm Android <2018-04-05 - Use After Free
CVSS 9.8
CVE-2018-3584 HIGH
Qualcomm Android <2018-04-05 - Use After Free
CVSS 7.5
CVE-2018-0493 HIGH
remctl < 3.14 - Use-After-Free via Sudo Option Command Execution
CVSS 7.2
CVE-2018-0170 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Malformed IP Packet Handling
CVSS 7.5
CVE-2018-9009 HIGH
libming 0.4.8 - Use-After-Free in decompileJUMP Function
CVSS 8.8
Details
Vulnerabilities 7,671
Exploit Likelihood High