The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
7,681 vulnerabilities with CWE-416
CVE-2016-0973
HIGH
Adobe Flash Player <18.0.0.329, 19.x, 20.x - Use After Free
CVSS 8.8
CVE-2015-1606
MEDIUM
GnuPG < 2.1.2 - Use-After-Free via Crafted Keyring File
CVSS 5.5
CVE-2015-7687
CRITICAL
OpenSMTPD < 5.7.2 - Use-After-Free via req_ca_vrfy_smtp and req_ca_vrfy_mta
CVSS 9.8
CVE-2015-6673
CRITICAL
libpgf < 6.14.12 - Use-After-Free in Decoder.cpp
CVSS 9.8
CVE-2015-3890
HIGH
Open Litespeed <1.3.10 - Use After Free
CVSS 7.5
CVE-2015-1329
HIGH
Ubuntu 15.04/14.04 LTS - Use After Free
CVSS 8.8
CVE-2015-7849
HIGH
NTP <4.2.8p4-4.3.77 - Use After Free
CVSS 8.8
CVE-2015-5221
MEDIUM
JasPer <1.900.2 - Use After Free
CVSS 5.5
CVE-2015-8963
HIGH
Linux Kernel < 3.2.85 - Use-After-Free via CPU Unplug Operation
CVSS 7.0
CVE-2015-8961
HIGH
Linux Kernel 3.10.85-3.12 - Use-After-Free in ext4 Journal Stop Function
CVSS 7.8
CVE-2015-8871
CRITICAL
Debian Linux < 2.1.0 - Use After Free
CVSS 9.8
CVE-2015-8949
CRITICAL
DBD::mysql < 4.033_01 - Use-After-Free in my_login Function
CVSS 9.8
CVE-2015-0568
HIGH
Linux Kernel 3.0-3.19.8 - Use-After-Free in MSM-Camera Driver via ioctl Call
CVSS 7.8
CVE-2015-8823
HIGH
Adobe Flash Player < 18.0.0.268, 19.x-20.x < 20.0.0.228, < 11.2.202.554 - Use-After-Free via TextField Text Property
CVSS 8.8
CVE-2015-8822
HIGH
Adobe Flash Player < 18.0.0.268, 19.x-20.x < 20.0.0.228, < 11.2.202.554 - Use-After-Free via MPEG-4 Data
CVSS 8.8
CVE-2015-8821
HIGH
Adobe Flash Player < 18.0.0.268, 19.x-20.x < 20.0.0.228 - Remote Code Execution via MPEG-4 Data
CVSS 8.8
CVE-2015-8655
HIGH
Adobe Flash Player < 18.0.0.268, 19.x-20.x < 20.0.0.228 - Remote Code Execution via MPEG-4 Data
CVSS 8.8
CVE-2015-8653
HIGH
Adobe Flash Player < 18.0.0.268, 19.x-20.x < 20.0.0.228, AIR < 20.0.0.204 - Remote Code Execution via MPEG-4 Data
CVSS 8.8
CVE-2015-6831
HIGH
PHP < 5.4.44 - Use-After-Free in SPL Unserialization
CVSS 7.3
CVE-2015-6126
Microsoft Windows - Use-After-Free via PGM Protocol Race Condition
CVE-2015-7312
Linux Kernel 3.x-4.x - Race Condition via madvise or msync System Call
CVE-2015-7621
Adobe Reader/Acrobat <10.1.16/<11.0.13 - Use After Free
CVE-2015-7619
Adobe Reader/Acrobat <10.1.16/11.0.13 - Auth Bypass
CVE-2015-7618
Adobe Reader/Acrobat <10.1.16 & 11.x <11.0.13 - Auth Bypass
CVE-2015-7617
Adobe Reader and Acrobat <10.1.16, 11.0.13 - Use After Free
Details
Vulnerabilities
7,681
Exploit Likelihood
High