CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,671 vulnerabilities with CWE-416
CVE-2018-4878 HIGH KEV
Adobe Flash Player < 28.0.0.161 - Use-After-Free in Primetime SDK Media Player Listener Handling
CVSS 7.8
CVE-2018-4877 CRITICAL
Adobe Flash Player < 28.0.0.161 - Use-After-Free in Primetime SDK Media Player QoS
CVSS 9.8
CVE-2018-6548 CRITICAL
libwebm < 1.0.0.27 - Use-After-Free in Vp9HeaderParser
CVSS 9.8
CVE-2018-6359 HIGH
libming < 0.4.8 - Use-After-Free in decompileIF Function
CVSS 8.8
CVE-2018-5747 MEDIUM
Long Range Zip <0.631 - Use After Free
CVSS 5.5
CVE-2018-5344 HIGH
Linux Kernel < 4.14.13 - Use-After-Free in Loop Device Release
CVSS 7.8
CVE-2018-0001 CRITICAL
Junos OS Multiple Versions - Unauthenticated Remote Code Execution via PHP Use-After-Free
CVSS 9.8
CVE-2017-18153 HIGH
Qualcomm 9206 LTE Modem Firmware - Use-After-Free via Race Condition
CVSS 8.4
CVE-2017-14201 HIGH
Zephyr shell <1.14.0 - Use After Free
CVSS 7.8
CVE-2017-18157 HIGH
Qualcomm Multiple Chipsets Firmware - Use-After-Free in Thermal Engine
CVSS 7.8
CVE-2017-18156 HIGH
Qualcomm MDM9206/MDM9607/MDM9650/MSM8996AU/SD 210/212/205/625/820/820A/835/SDX20 Firmware - Camera Driver Use-After-Free
CVSS 7.8
CVE-2017-3145 HIGH
BIND 9.0.0-9.12.0rc1 Use-After-Free
CVSS 7.5
CVE-2017-18328 HIGH
Qualcomm Snapdragon Mobile and Wear Firmware - Use-After-Free in QSH Client Rule Processing
CVSS 7.8
CVE-2017-9704 HIGH
Android - Use-After-Free in msm_vb2 Buffer Operations
CVSS 7.8
CVE-2017-15399 HIGH
Google Chrome < 62.0.3202.89 - Use-After-Free in V8 via Crafted HTML Page
CVSS 8.8
CVE-2017-15412 HIGH
Redhat Enterprise Linux Desktop < 63.0.3239.84 - Use After Free
CVSS 8.8
CVE-2017-15411 HIGH
Google Chrome < 63.0.3239.84 - Use-After-Free in PDFium via Crafted PDF File
CVSS 8.8
CVE-2017-15410 HIGH
Chrome < 63.0.3239.84 - Use-After-Free in PDFium via Crafted PDF File
CVSS 8.8
CVE-2017-15842 HIGH
Android - Use-After-Free in Mutex Handling
CVSS 7.8
CVE-2017-7828 CRITICAL
Debian Linux < 57.0 - Use After Free
CVSS 9.8
CVE-2017-7819 CRITICAL
Redhat Enterprise Linux Desktop < 52.4.0 - Use After Free
CVSS 9.8
CVE-2017-7818 CRITICAL
Redhat Enterprise Linux Desktop < 52.4.0 - Use After Free
CVSS 9.8
CVE-2017-7809 CRITICAL
Debian Linux < 55.0 - Use After Free
CVSS 9.8
CVE-2017-7806 HIGH
Firefox < 55.0 - Use-After-Free in Layer Manager via SVG Rendering
CVSS 7.5
CVE-2017-7805 HIGH
Firefox < 56 and ESR < 52.4 - Use-After-Free in TLS 1.2 Handshake Hash Calculation
CVSS 7.5
Details
Vulnerabilities 7,671
Exploit Likelihood High