CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,671 vulnerabilities with CWE-416
CVE-2017-18218 HIGH
Linux Kernel 4.5-4.9.91 - Use-After-Free in hns_nic_net_xmit
CVSS 7.8
CVE-2017-18202 HIGH
Linux Kernel < 4.9.68 - Use-After-Free in OOM Reaper
CVSS 7.0
CVE-2017-15820 HIGH
Android - Use-After-Free in KGSL IOCTL Handler
CVSS 7.8
CVE-2017-15347 MEDIUM
Huawei Mate 9 Pro Firmware < LON-AL00BC00B235 - Use-After-Free
CVSS 5.5
CVE-2017-5129 HIGH
Google Chrome <62.0.3202.62 - Use After Free
CVSS 8.8
CVE-2017-5127 HIGH
Google Chrome <62.0.3202.62 - Use After Free
CVSS 8.8
CVE-2017-5126 HIGH
Google Chrome <62.0.3202.62 - Use After Free
CVSS 8.8
CVE-2017-15395 MEDIUM
Google Chrome < 62.0.3202.62 - Use-After-Free in Blink via Crafted HTML Page
CVSS 6.5
CVE-2017-12374 HIGH
ClamAV AntiVirus <0.99.2 - DoS
CVSS 7.5
CVE-2017-15126 HIGH
Linux Kernel < 4.13.6 - Use-After-Free in userfaultfd Event Handling
CVSS 8.1
CVE-2017-13184 HIGH
Android 8.0-8.1 - Use-After-Free in SurfaceFlinger enableVSyncInjections
CVSS 7.8
CVE-2017-13180 HIGH
Android 6.0-8.1 - Use-After-Free in SoftAVCDec onQueueFilled
CVSS 7.8
CVE-2017-13179 CRITICAL
Android 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1 - Use-After-Free in SoftHEVC
CVSS 9.8
CVE-2017-13178 CRITICAL
Android 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1 - Use-After-Free in SoftAVCDec initDecoder
CVSS 9.8
CVE-2017-0869 HIGH
Android NVIDIA Driver - Integer Overflow to Use-After-Free and Privilege Escalation
CVSS 7.8
CVE-2017-16732 MEDIUM
Advantech WebAccess <8.3 - Use After Free
CVSS 6.5
CVE-2017-4949 HIGH
VMware Workstation/Fusion - Use After Free
CVSS 7.0
CVE-2017-15849 HIGH
Android - Use-After-Free in LayerStack
CVSS 7.8
CVE-2017-18017 CRITICAL
Linux Kernel < 4.11 and 4.9.x < 4.9.36 - Use-After-Free in tcpmss_mangle_packet
CVSS 9.8
CVE-2017-1000421 CRITICAL
Gifsicle < 1.89 - Use-After-Free in read_gif Function
CVSS 9.8
CVE-2017-17975 MEDIUM
Linux Kernel < 4.14.10 - Use-After-Free in usbtv_probe
CVSS 5.5
CVE-2017-17973 HIGH
LibTIFF 4.0.8 - Use-After-Free in t2p_writeproc
CVSS 8.8
CVE-2017-17820 MEDIUM
Netwide Assembler 2.14rc0 - Use-After-Free in Macro Preprocessor
CVSS 5.5
CVE-2017-17817 MEDIUM
Netwide Assembler 2.14rc0 - Use-After-Free in pp_verror
CVSS 5.5
CVE-2017-17816 MEDIUM
Netwide Assembler 2.14rc0 - Use-After-Free in pp_getline
CVSS 5.5
Details
Vulnerabilities 7,671
Exploit Likelihood High