CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,484 vulnerabilities with CWE-416
CVE-2026-25507 MEDIUM
ESF-IDF <5.5.2-5.1.6 - Use After Free
CVSS 6.3
CVE-2026-23089 HIGH
Linux Kernel - Use-After-Free in ALSA USB Audio Mixer Controls
CVSS 7.8
CVE-2026-23077 HIGH
Linux Kernel 6.16-6.18.7 - Use-After-Free in VMA Merge Handling
CVSS 7.8
CVE-2026-23074 HIGH
Linux kernel - Privilege Escalation
CVSS 7.8
CVE-2026-20414 MEDIUM
Android MediaTek chipset - Use-After-Free in imgsys
CVSS 6.7
CVE-2026-20411 HIGH
Android - Use-After-Free in Camera ISP
CVSS 7.8
CVE-2026-22264 HIGH
Suricata < 7.0.14 - Use-After-Free via Excessive Alert Generation
CVSS 7.4
CVE-2026-24869 HIGH
Firefox < 147.0.2 - Use-After-Free in Layout Scrolling and Overflow
CVSS 8.8
CVE-2026-23013 HIGH
Linux Kernel - Use-After-Free in octeon_ep_vf IRQ Rollback
CVSS 7.0
CVE-2026-23012 HIGH
Linux Kernel - Use-After-Free in DAMON Context Call Control
CVSS 7.8
CVE-2026-23010 HIGH
Linux Kernel < 6.1.162, 6.2.0-6.6.122, 6.7.0-6.12.67, 6.13.0-6.18.7 - Use-After-Free in inet6_addr_del()
CVSS 7.8
CVE-2026-23001 HIGH
Linux Kernel Use-After-Free in macvlan_forward_source
CVSS 7.8
CVE-2026-22995 HIGH
Linux Kernel 6.18.4-6.18.6 - Use-After-Free in ublk_partition_scan_work
CVSS 7.8
CVE-2026-22980 HIGH
Linux Kernel - Use-After-Free in NFS Server Grace Period Handling
CVSS 7.8
CVE-2026-0794 CRITICAL
ALGO 8180 IP Audio Alerter - Use After Free
CVSS 9.8
CVE-2026-0908 HIGH
Google Chrome < 144.0.7559.59 - Use-After-Free in ANGLE via Crafted HTML Page
CVSS 8.8
CVE-2026-23884 CRITICAL
FreeRDP < 3.21.0 - Use-After-Free in Offscreen Bitmap Deletion
CVSS 9.8
CVE-2026-23883 CRITICAL
FreeRDP < 3.21.0 - Use-After-Free in xf_Pointer_New
CVSS 9.8
CVE-2026-1144 MEDIUM
quickjs-ng quickjs < 0.11.0 - Use-After-Free in Atomics Ops Handler
CVSS 6.3
CVE-2026-21921 MEDIUM
Juniper Junos OS and Junos OS Evolved - Authenticated Denial of Service via Telemetry Subscription Handling
CVSS 6.5
CVE-2026-21908 HIGH
Juniper Junos OS and Junos OS Evolved - Use-After-Free in 802.1X Authentication Daemon
CVSS 7.1
CVE-2026-22857 CRITICAL
FreeRDP < 3.20.1 - Use-After-Free in IRP Error Handling
CVSS 9.8
CVE-2026-22856 HIGH
FreeRDP < 3.20.1 - Use-After-Free via Serial Channel IRP Thread Race
CVSS 8.1
CVE-2026-22851 MEDIUM
FreeRDP < 3.20.1 - Use-After-Free via RDPGFX ResetGraphics Handling
CVSS 5.9
CVE-2026-21287 HIGH
Substance3D Stager < 3.1.6 - Use-After-Free via Malicious File
CVSS 7.8
Details
Vulnerabilities 7,484
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits