CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,672 vulnerabilities with CWE-416
CVE-2017-5043 HIGH
Chrome Apps <57.0.2987.98 - Use After Free
CVSS 8.8
CVE-2017-5039 HIGH
Google Chrome <57.0.2987.98-57.0.2987.108 - Use After Free
CVSS 7.8
CVE-2017-5038 MEDIUM
Chrome Apps <57.0.2987.98 - Use After Free
CVSS 6.3
CVE-2017-5036 HIGH
Google Chrome <57.0.2987.98-57.0.2987.108 - Use After Free
CVSS 7.8
CVE-2017-5034 HIGH
Google Chrome <57.0.2987.98 - Use After Free
CVSS 8.8
CVE-2017-5031 HIGH
Google Chrome <57.0.2987.98 - Use After Free
CVSS 8.8
CVE-2017-7946 MEDIUM
radare2 1.3.0 - Use-After-Free in Mach0 File Parser
CVSS 5.5
CVE-2017-3063 CRITICAL
Adobe Flash Player <= 25.0.0.127 - Use-After-Free in ActionScript2 NetStream
CVSS 9.8
CVE-2017-3062 CRITICAL
Adobe Flash Player <= 25.0.0.127 - Use-After-Free in ActionScript2 Getter/Setter
CVSS 9.8
CVE-2017-3059 CRITICAL
Adobe Flash Player <= 25.0.0.127 - Use-After-Free in Internal Script Object
CVSS 9.8
CVE-2017-3058 HIGH
Adobe Flash Player <= 25.0.0.127 - Use-After-Free in Sound Class
CVSS 7.8
CVE-2017-3057 HIGH
Adobe Acrobat Reader < 11.0.19, < 15.006.30280, < 15.023.20070 Use-After-Free in JavaScript API
CVSS 7.8
CVE-2017-3047 HIGH
Adobe Acrobat Reader < 11.0.19, < 15.006.30280, < 15.023.20070 - Use-After-Free in JavaScript Annotation API
CVSS 7.8
CVE-2017-3035 HIGH
Adobe Acrobat Reader < 11.0.19, 15.006.30280, 15.023.20070 - Use-After-Free in XFA Engine
CVSS 7.8
CVE-2017-3027 HIGH
Adobe Acrobat and Reader < 11.0.19, < 15.006.30280, < 15.023.20070 - Use-After-Free in XFA Module
CVSS 7.8
CVE-2017-3026 HIGH
Adobe Acrobat and Reader < 11.0.19, < 15.006.30280, < 15.023.20070 - Use-After-Free
CVSS 7.8
CVE-2017-3014 HIGH
Adobe Acrobat Reader <= 11.0.19, <= 15.006.30280, <= 15.023.20070 - Use-After-Free in XML Forms Architecture
CVSS 7.8
CVE-2017-7185 HIGH
Cesanta Mongoose Library <6.7 & OS <1.2 Use-After-Free via Multipart POST
CVSS 7.5
CVE-2017-5924 HIGH
YARA 3.5.0 - Use-After-Free in Grammar Parser
CVSS 7.5
CVE-2017-2485 HIGH
iPhone OS < 10.3, macOS < 10.12.4, tvOS < 10.2, watchOS < 3.2 - Remote Code Execution via Crafted X.509 Certificate
CVSS 8.8
CVE-2017-2472 HIGH
iPhone OS < 10.3, macOS < 10.12.4, tvOS < 10.2, watchOS < 3.2 - Use-After-Free in Kernel
CVSS 7.8
CVE-2017-2471 HIGH
Safari < 10.1 - Remote Code Execution via Use-After-Free in WebKit
CVSS 8.8
CVE-2017-2463 HIGH
iCloud < 6.2 - Remote Code Execution via WebKit Use-After-Free
CVSS 8.8
CVE-2017-2449 HIGH
macOS < 10.12.4 - Use-After-Free in Bluetooth Component
CVSS 7.8
CVE-2017-2441 HIGH
iPhone OS < 10.2.1, macOS < 10.12.3, tvOS < 10.1.1, watchOS < 3.1.3 - RCE via C++ Demangling Use-After-Free
CVSS 7.8
Details
Vulnerabilities 7,672
Exploit Likelihood High