CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,681 vulnerabilities with CWE-416
CVE-2016-1836 MEDIUM
libxml2 <2.9.4 - Use After Free
CVSS 5.5
CVE-2016-1819 HIGH
Apple tvOS < 9.2.1 - Use-After-Free in IOAccelContext2::clientMemoryForType
CVSS 7.8
CVE-2016-1568 HIGH
QEMU < 2.5.1.1 - Use-After-Free in AHCI NCQ AIO Command Handling
CVSS 8.8
CVE-2016-1031 HIGH
Adobe Flash Player < 18.0.0.343, 19.x-21.x < 21.0.0.213, < 11.2.202.616 - Use-After-Free
CVSS 8.8
CVE-2016-1017 HIGH
Adobe Flash Player < 18.0.0.343, 19.x-21.x < 21.0.0.213, < 11.2.202.616 - Use-After-Free in LoadVars.decode
CVSS 8.8
CVE-2016-1016 HIGH
Adobe Flash Player < 18.0.0.343, 19.x-21.x < 21.0.0.213, < 11.2.202.616 - Use-After-Free via flash.geom.Matrix Callback
CVSS 8.8
CVE-2016-1013 HIGH
Adobe Flash Player < 18.0.0.343, 19.x-21.x < 21.0.0.213, < 11.2.202.616 - Use-After-Free
CVSS 8.8
CVE-2016-1011 HIGH
Adobe Flash Player < 18.0.0.343, 19.x-21.x < 21.0.0.213, < 11.2.202.616 - Use-After-Free
CVSS 8.8
CVE-2016-1750 HIGH
Apple iOS <9.3, macOS <10.11.4, tvOS <9.2, watchOS <2.2 - Use-After-Free
CVSS 7.8
CVE-2016-1000 HIGH
Adobe Flash Player < 18.0.0.333, 19.x-21.x < 21.0.0.182, < 11.2.202.577 - Use-After-Free
CVSS 8.8
CVE-2016-0999 HIGH
Adobe Flash Player <18.0.0.333,19.x-21.x - RCE
CVSS 8.8
CVE-2016-0998 HIGH
Adobe Flash Player <18.0.0.333 & 19.x-21.x - Use After Free
CVSS 8.8
CVE-2016-0997 HIGH
Adobe Flash Player <18.0.0.333,19.x-21.x - RCE
CVSS 8.8
CVE-2016-0996 HIGH
Adobe Flash Player <18.0.0.333,19.x-21.x - RCE
CVSS 8.8
CVE-2016-0995 HIGH
Adobe Flash Player <18.0.0.333,19.x-21.x - RCE
CVSS 8.8
CVE-2016-0994 HIGH
Adobe Flash Player <18.0.0.333,19.x-21.x - RCE
CVSS 8.8
CVE-2016-0991 HIGH
Adobe Flash Player <18.0.0.333,19.x-21.x - RCE
CVSS 8.8
CVE-2016-0990 HIGH
Adobe Flash Player <18.0.0.333,19.x-21.x - RCE
CVSS 8.8
CVE-2016-0988 HIGH
Adobe Flash Player <18.0.0.333,19.x-21.x - RCE
CVSS 8.8
CVE-2016-0987 HIGH
Adobe Flash Player <18.0.0.333,19.x-21.x - RCE
CVSS 8.8
CVE-2016-0746 CRITICAL
nginx 0.6.18-1.8.0 and 1.9.x < 1.9.10 - Use-After-Free in DNS Resolver
CVSS 9.8
CVE-2016-0984 HIGH KEV
Adobe Flash Player <18.0.0.329, 19.x, 20.x - Use After Free
CVSS 8.8
CVE-2016-0983 HIGH
Adobe Flash Player <18.0.0.329, 19.x, 20.x - Use After Free
CVSS 8.8
CVE-2016-0975 HIGH
Adobe Flash Player <18.0.0.329, 19.x, 20.x - Use After Free
CVSS 8.8
CVE-2016-0974 HIGH
Adobe Flash Player <18.0.0.329, 19.x, 20.x - Use After Free
CVSS 8.8
Details
Vulnerabilities 7,681
Exploit Likelihood High