The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
7,671 vulnerabilities with CWE-416
CVE-2018-9944
HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via addLink Method
CVSS 8.8
CVE-2018-9935
HIGH
Foxit PhantomPDF 8.0-8.3.2.25013 and Foxit Reader <9.0.1.1049 - Remote Code Execution via addField Method
CVSS 8.8
CVE-2018-1180
HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via AFSimple_Calculate Use-After-Free
CVSS 8.8
CVE-2018-1178
HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via addField Method Use-After-Free
CVSS 8.8
CVE-2018-1177
HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via addAnnot Method Use-After-Free
CVSS 8.8
CVE-2018-1173
HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via XFA borderColor Attribute
CVSS 8.8
CVE-2018-11230
HIGH
jbig2enc 0.29 - Use-After-Free in jbig2_add_page
CVSS 8.8
CVE-2018-8843
MEDIUM
Rockwell Automation Arena <15.10.00 - Use After Free
CVSS 5.5
CVE-2018-0946
HIGH
Microsoft Edge and ChakraCore - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2018-10685
CRITICAL
Long Range Zip 0.631 - Use-After-Free in lzma_decompress_buf
CVSS 9.8
CVE-2018-10675
HIGH
Linux Kernel < 4.12.9 - Use-After-Free in do_get_mempolicy
CVSS 7.8
CVE-2018-3844
HIGH
Hyland Perceptive Document Filters 11.4.0.2647 - Use-After-Free via Crafted DOCX Document
CVSS 8.8
CVE-2018-10303
HIGH
Foxit Reader and PhantomPDF < 9.1 - Remote Code Execution via Use-After-Free
CVSS 8.8
CVE-2018-10302
HIGH
Foxit Reader and PhantomPDF < 9.1 - Remote Code Execution via Use-After-Free
CVSS 7.8
CVE-2018-3850
HIGH
Foxit PDF Reader 9.0.1.1049 - Use-After-Free in JavaScript Engine
CVSS 8.8
CVE-2018-10199
CRITICAL
mruby <= 1.4.0 - Use-After-Free in File#initialize_copy
CVSS 9.8
CVE-2018-10119
HIGH
LibreOffice <5.4.5.1-6.0.1.1 - Use After Free
CVSS 7.8
CVE-2018-3590
CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - Use-After-Free in RIL
CVSS 9.8
CVE-2018-5826
MEDIUM
Qualcomm Android <2018-04-05 - Use After Free
CVSS 5.9
CVE-2018-5825
HIGH
Qualcomm Android <2018-04-05 - Use After Free
CVSS 7.8
CVE-2018-3599
CRITICAL
Qualcomm Android <2018-04-05 - Use After Free
CVSS 9.8
CVE-2018-3584
HIGH
Qualcomm Android <2018-04-05 - Use After Free
CVSS 7.5
CVE-2018-0493
HIGH
remctl < 3.14 - Use-After-Free via Sudo Option Command Execution
CVSS 7.2
CVE-2018-0170
HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Malformed IP Packet Handling
CVSS 7.5
CVE-2018-9009
HIGH
libming 0.4.8 - Use-After-Free in decompileJUMP Function
CVSS 8.8
Details
Vulnerabilities
7,671
Exploit Likelihood
High