CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,671 vulnerabilities with CWE-416
CVE-2017-17814 MEDIUM
Netwide Assembler 2.14rc0 - Use-After-Free in do_directive
CVSS 5.5
CVE-2017-17813 MEDIUM
Netwide Assembler 2.14rc0 - Use-After-Free in pp_list_one_macro
CVSS 5.5
CVE-2017-16587 HIGH
Foxit Reader 8.3.2.25013 - Remote Code Execution via removeField Method
CVSS 8.8
CVE-2017-16586 HIGH
Foxit Reader 8.3.2.25013 - Remote Code Execution via addAnnot Method Use-After-Free
CVSS 8.8
CVE-2017-16585 HIGH
Foxit Reader 8.3.2.25013 - Remote Code Execution via Use-After-Free in app.response
CVSS 8.8
CVE-2017-16583 HIGH
Foxit Reader 8.3.2.25013 - Remote Code Execution via XFA Datasets Element Use-After-Free
CVSS 8.8
CVE-2017-16581 HIGH
Foxit Reader 8.3.2.25013 - Remote Code Execution via Document Object Author Attribute
CVSS 8.8
CVE-2017-16577 HIGH
Foxit Reader 8.3.1.21155 - Remote Code Execution via Field Object Alignment Attribute
CVSS 8.8
CVE-2017-16576 HIGH
Foxit Reader 8.3.1.21155 - Use-After-Free in XFA Field Element
CVSS 8.8
CVE-2017-16575 HIGH
Foxit Reader 8.3.1.21155 - Use-After-Free in XFA Bind Element
CVSS 8.8
CVE-2017-14836 HIGH
Foxit Reader 8.3.1 - Use-After-Free in Annotation modDate Attribute
CVSS 8.8
CVE-2017-14834 HIGH
Foxit Reader 8.3.1.21155 - Use-After-Free in FileAttachment Annotation Style Attribute
CVSS 8.8
CVE-2017-14833 HIGH
Foxit Reader 8.3.1.21155 - Use-After-Free in Text Annotation Style Attribute
CVSS 8.8
CVE-2017-14832 HIGH
Foxit Reader 8.3.1.21155 - Use-After-Free in Caret Annotation Style Attribute
CVSS 8.8
CVE-2017-14831 HIGH
Foxit Reader 8.3.1.21155 - Use-After-Free in Circle Annotation Author Attribute
CVSS 8.8
CVE-2017-10959 HIGH
Foxit Reader 8.3.1.21155 - Remote Code Execution via Link Object setAction Method
CVSS 8.8
CVE-2017-10958 HIGH
Foxit Reader 8.3.1.21155 - Use-After-Free in Field Object Value Attribute
CVSS 8.8
CVE-2017-10957 HIGH
Foxit Reader 8.3.1.21155 - Use-After-Free in Annotation ArrowEnd Attribute
CVSS 8.8
CVE-2017-17670 HIGH
VLC media player < 2.2.8 - Use-After-Free in MP4 Demux Module
CVSS 8.8
CVE-2017-1635 HIGH
IBM Tivoli Monitoring V6 <6.2.2.x - Use After Free
CVSS 8.0
CVE-2017-17499 CRITICAL
ImageMagick 7.0.0-0-7.0.7-12 - Use-After-Free in Magick::Image::read
CVSS 9.8
CVE-2017-16398 CRITICAL
Adobe Acrobat <2017.012.20098 - Use After Free
CVSS 9.8
CVE-2017-16393 HIGH
Adobe Acrobat <2017.012.20098 - Use After Free
CVSS 8.8
CVE-2017-16390 HIGH
Adobe Acrobat <2017.012.20098 - Use After Free
CVSS 8.8
CVE-2017-16389 HIGH
Adobe Acrobat and Reader <= 11.0.22, 15.0-15.006.30355, 17.0-17.012.20098 - Use-After-Free in JavaScript Engine
CVSS 8.8
Details
Vulnerabilities 7,671
Exploit Likelihood High