CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,681 vulnerabilities with CWE-416
CVE-2016-5255 HIGH
Firefox < 47.0.1 - Use-After-Free in js::PreliminaryObjectArray::sweep
CVSS 8.8
CVE-2016-5254 CRITICAL
Firefox < 48.0 - Use-After-Free in nsXULPopupManager::KeyDown
CVSS 9.8
CVE-2016-6295 CRITICAL
PHP <5.5.38, 5.6.x <5.6.24, 7.x <7.0.9 - Use After Free
CVSS 9.8
CVE-2016-6290 CRITICAL
PHP <5.5.38, <5.6.24, <7.0.9 - Use After Free
CVSS 9.8
CVE-2016-5136 HIGH
Google Chrome < 51.0.2704.106 - Use-After-Free in Extensions Subsystem
CVSS 8.8
CVE-2016-5131 HIGH
Google Chrome < 52.0.2743.82 - Use After Free
CVSS 8.8
CVE-2016-5127 HIGH
Chrome < 51.0.2704.106 - Use-After-Free in VisibleUnits
CVSS 7.5
CVE-2016-1708 HIGH
Google Chrome <52.0.2743.82 - Use After Free
CVSS 8.8
CVE-2016-4625 HIGH
macOS < 10.11.6 - Use-After-Free in IOSurface
CVSS 7.8
CVE-2016-1863 HIGH
Apple iOS <9.3.3, OS X <10.11.6, tvOS <9.2.2, watchOS <2.2.2 - Pri...
CVSS 7.8
CVE-2016-4248 HIGH
Adobe Flash Player <22.0.0.209 - Use After Free
CVSS 8.8
CVE-2016-4231 HIGH
Adobe Flash Player <22.0.0.209 - Use After Free
CVSS 8.8
CVE-2016-4230 HIGH
Adobe Flash Player <22.0.0.209 - Use After Free
CVSS 8.8
CVE-2016-4229 HIGH
Adobe Flash Player <22.0.0.209 - Use After Free
CVSS 8.8
CVE-2016-4228 HIGH
Adobe Flash Player <22.0.0.209 - Use After Free
CVSS 8.8
CVE-2016-4227 HIGH
Adobe Flash Player <22.0.0.209 - Use After Free
CVSS 8.8
CVE-2016-4226 HIGH
Adobe Flash Player <22.0.0.209 - Use After Free
CVSS 8.8
CVE-2016-4222 HIGH
Adobe Flash Player <22.0.0.209 - Use After Free
CVSS 8.8
CVE-2016-4174 HIGH
Adobe Flash Player <22.0.0.209 - Use After Free
CVSS 8.8
CVE-2016-4173 HIGH
Adobe Flash Player <22.0.0.209 - Use After Free
CVSS 8.8
CVE-2016-4994 HIGH
GIMP < 2.8.18 - Use-After-Free in XCF Image Loader
CVSS 7.8
CVE-2016-3189 MEDIUM
bzip2 1.0.6 - Use-After-Free via Crafted bzip2 File
CVSS 6.5
CVE-2016-4121 CRITICAL
Adobe Flash Player <21.0.0.242 - Memory Corruption
CVSS 9.8
CVE-2016-4805 HIGH
Linux Kernel < 4.5.2 - Use-After-Free in PPP Network Namespace Handling
CVSS 7.8
CVE-2016-1837 MEDIUM
libxml2 <2.9.4 - Use After Free
CVSS 5.5
Details
Vulnerabilities 7,681
Exploit Likelihood High