CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,684 vulnerabilities with CWE-416
CVE-2014-9914 HIGH
Linux Kernel < 3.15.2 - Use-After-Free via IPv4 UDP Socket Race Condition
CVSS 7.8
CVE-2014-9906 CRITICAL
Debian Linux < 4.028 - Use After Free
CVSS 9.8
CVE-2014-8439 HIGH KEV
Adobe Flash Player < 11.2.202.418 - Remote Code Execution
CVSS 8.8
CVE-2014-3194
Redhat Enterprise Linux Desktop Supplementary - Use After Free
CVE-2014-3193
Redhat Enterprise Linux Desktop Supplementary - Use After Free
CVE-2014-3192
Redhat Enterprise Linux Desktop Supplementary - Use After Free
CVE-2014-3191
Google Chrome < 38.0.2125.101 - Use-After-Free in Blink Render Tree
CVE-2014-3190
Google Chrome < 38.0.2125.101 - Use-After-Free in Event::currentTarget
CVE-2014-1563
Opensuse Evergreen < 31.1.0 - Use After Free
CVE-2014-4060
Microsoft Windows Media Center TV Pack - Memory Corruption
CVE-2014-4654
Linux Kernel < 3.15.2 - Use-After-Free via ALSA Control Ioctl
CVE-2014-4653
Linux kernel <3.15.2 - Use After Free
CVE-2014-0203 MEDIUM
Linux Kernel < 2.6.33 - Use-After-Free in __do_follow_link
CVSS 5.5
CVE-2014-1532 CRITICAL
Firefox < 29.0 - Use-After-Free in nsHostResolver
CVSS 9.8
CVE-2014-1531 HIGH
Firefox < 29.0 - Use-After-Free in nsGenericHTMLElement Image Resize Handling
CVSS 8.8
CVE-2014-1525
Firefox < 29.0 and SeaMonkey < 2.26 - Use-After-Free in Text Track Manager
CVE-2014-1776 CRITICAL KEV
Microsoft Internet Explorer <11 - Use After Free
CVSS 9.8
CVE-2014-1732
Google Chrome <34.0.1847.131-34.0.1847.132 - DoS
CVE-2014-2851
Linux Kernel < 3.14.1 - Use-After-Free in ping_init_sock
CVE-2014-2568
Linux kernel <3.13.6 - Use After Free
CVE-2014-0131
Linux kernel <3.13.6 - Info Disclosure
CVE-2014-1512
Firefox < 28.0 - Use-After-Free in TypeObject Class
CVE-2014-1713
Blink <33.0.1750.152-33.0.1750.154 - Use After Free
CVE-2014-0307
Microsoft Internet Explorer 9 - Use After Free
CVE-2014-0100
Linux Kernel 3.9-3.10.37 - Use-After-Free via Fragmented ICMP Echo Request Packets
Details
Vulnerabilities 7,684
Exploit Likelihood High