CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,672 vulnerabilities with CWE-416
CVE-2016-9068 HIGH
Firefox < 50.0 - Use-After-Free in Web Animations Timeline Handling
CVSS 7.5
CVE-2016-9067 MEDIUM
Firefox < 50.0 - Use-After-Free during DOM Operations
CVSS 6.5
CVE-2016-5287 CRITICAL
Firefox < 49.0.2 - Use-After-Free during Actor Destruction with Service Workers
CVSS 9.8
CVE-2016-9591 MEDIUM
JasPer < 2.0.12 - Use-After-Free in JPEG 2000 Image Decoding
CVSS 5.5
CVE-2016-6168 HIGH
Foxit Reader & PhantomPDF <7.3.4.311 - Use After Free
CVSS 7.8
CVE-2016-10385 CRITICAL
Google Android - Use After Free
CVSS 9.8
CVE-2016-0959 CRITICAL
Adobe Flash Player <20.0.0.267 - Use After Free
CVSS 9.8
CVE-2016-7835 CRITICAL
Dena H2o < 2.0.4 - Use After Free
CVSS 9.1
CVE-2016-4473 CRITICAL
PHP 5.6.x and 7.0.7 - Remote Code Execution via Use-After-Free in phar_object.c
CVSS 9.8
CVE-2016-7978 CRITICAL
Ghostscript 9.20 - Use-After-Free via .setdevice Reference Leak
CVSS 9.8
CVE-2016-5177 HIGH
Google Chrome < 53.0.2785.143 - Use-After-Free in V8
CVSS 8.8
CVE-2016-10217 MEDIUM
Ghostscript - Use-After-Free in Color Management Module
CVSS 5.5
CVE-2016-10211 HIGH
YARA 3.5.0 - Use-After-Free in yr_parser_lookup_loop_variable
CVSS 7.5
CVE-2016-3179 MEDIUM
MiniSSDPd - Use-After-Free in Error Handling
CVSS 5.5
CVE-2016-10051 HIGH
ImageMagick 6.9.5-5 - Use After Free
CVSS 7.8
CVE-2016-10188 CRITICAL
bitlbee < 3.4.2 - Use-After-Free via File Transfer Connection Expiry
CVSS 9.8
CVE-2016-10200 HIGH
Linux Kernel < 4.8.14 - Use-After-Free via L2TPv3 IP Encapsulation Race Condition
CVSS 7.0
CVE-2016-4488 MEDIUM
libiberty - Use-After-Free in ktypevec
CVSS 5.5
CVE-2016-4487 MEDIUM
libiberty - Use-After-Free in btypevec
CVSS 5.5
CVE-2016-10109 HIGH
pcsc-lite < 1.8.20 - Use-After-Free via SCardReleaseContext
CVSS 7.5
CVE-2016-7644 HIGH
iPhone OS < 10.2 - Use-After-Free in Kernel
CVSS 7.8
CVE-2016-7633 HIGH
macOS < 10.12.2 - Use-After-Free in Directory Services
CVSS 7.8
CVE-2016-7621 HIGH
watchOS < 3.1.3 - Use-After-Free in Kernel
CVSS 7.8
CVE-2016-7591 MEDIUM
Apple Iphone OS < 10.1.1 - Use After Free
CVSS 6.5
CVE-2016-8674 MEDIUM
MuPDF < 1.10 - Use-After-Free in pdf_to_num Function
CVSS 5.5
Details
Vulnerabilities 7,672
Exploit Likelihood High