CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,684 vulnerabilities with CWE-416
CVE-2015-5119 CRITICAL KEV
Adobe Flash Player ByteArray Use After Free
CVSS 9.8
CVE-2015-3107
Adobe Flash Player <13.0.0.292-18.x - RCE
CVE-2015-2360 HIGH KEV
Windows Kernel win32k.sys - Local Privilege Escalation via Memory Corruption
CVSS 8.8
CVE-2015-1756
Microsoft Windows Common Controls - Use-After-Free via F12 Developer Tools
CVE-2015-1726
Microsoft Windows - Use-After-Free in Kernel-Mode Drivers
CVE-2015-1724
Microsoft Windows - Use-After-Free in Kernel-Mode Drivers
CVE-2015-1723
Microsoft Windows - Use-After-Free in Kernel-Mode Drivers
CVE-2015-1722
Microsoft Windows - Use-After-Free in Kernel-Mode Drivers
CVE-2015-1720
Microsoft Windows - Use-After-Free in Kernel-Mode Drivers
CVE-2015-3075
Adobe Reader/Acrobat <10.1.14, 11.x <11.0.11 - Use After Free
CVE-2015-3059
Adobe Reader/Acrobat <10.1.14, 11.x <11.0.11 - Use After Free
CVE-2015-3055
Adobe Reader/Acrobat <10.1.14, 11.0.11 - Use After Free
CVE-2015-3053
Adobe Reader/Acrobat <10.1.14, 11.0.11 - Use After Free
CVE-2015-2301
Canonical Ubuntu Linux < 5.4.40 - Use After Free
CVE-2015-1351
PHP <5.6.8 - Use After Free
CVE-2015-1209
Blink <40.0.2214.111-40.0.2214.109 - Use After Free
CVE-2015-0313 CRITICAL KEV
Adobe Flash Player < 11.2.202.442 - Use-After-Free
CVSS 9.8
CVE-2014-3622 CRITICAL
PHP 5.6.0 - Use-After-Free in Posthandler Component
CVSS 9.8
CVE-2014-10046 CRITICAL
Qualcomm Snapdragon Mobile Firmware - Use-After-Free in PDN Throttle Info Block
CVSS 9.8
CVE-2014-9482 MEDIUM
libdwarf <20140805 - Use After Free
CVSS 6.5
CVE-2014-3471 MEDIUM
QEMU < 2.1.2 - Use-After-Free via Virtio Block Device Hotplug/Unplug
CVSS 5.5
CVE-2014-9946 HIGH
Android Core Kernel - Use-After-Free
CVSS 7.8
CVE-2014-9930 HIGH
Android - Use-After-Free in WCDMA
CVSS 7.8
CVE-2014-9926 HIGH
Android - Use-After-Free in GNSS
CVSS 7.8
CVE-2014-9940 HIGH
Linux Kernel < 3.19 - Use-After-Free in regulator_ena_gpio_free
CVSS 7.0
Details
Vulnerabilities 7,684
Exploit Likelihood High