CWE-763

Release of Invalid Pointer or Reference

Parent: CWE-404 - Improper Resource Shutdown or Release

The product attempts to return a memory resource to the system, but it calls the wrong release function or calls the appropriate release function incorrectly.

92 vulnerabilities with CWE-763
CVE-2020-11105 CRITICAL
USC iLab cereal <1.3.0 - Use After Free
CVSS 9.8
CVE-2019-18619 HIGH
Synaptics VFS75xx Firmware - Use-After-Free via Invalid Pointer in synaTee Component
CVSS 7.8
CVE-2019-20632 MEDIUM
GPAC < 0.8.0 - Denial of Service via Crafted MP4 File
CVSS 5.5
CVE-2019-20631 MEDIUM
GPAC < 0.8.0 - Denial of Service via Crafted MP4 File
CVSS 5.5
CVE-2019-19820 HIGH
Kyrol Internet Security 9.0.6.9 - Use-After-Free in kyrld.sys IOCTL Handling
CVSS 7.8
CVE-2019-20202 MEDIUM
ezxml 0.8.3-0.8.6 - Use-After-Free in ezxml_char_content
CVSS 6.5
CVE-2019-20170 MEDIUM
GPAC 0.8.0 and 0.9.0-development-20191109 - Use-After-Free in GF_IPMPX_AUTH_Delete
CVSS 5.5
CVE-2019-11930 CRITICAL
HHVM <3.30.12, <4.8.5, <4.9.0-4.23.1, 4.24.0-4.28.1 - RCE
CVSS 9.8
CVE-2019-9290 HIGH
Android 10 - Use-After-Free in tzdata
CVSS 7.8
CVE-2018-25243 MEDIUM
FastTube 1.0.1.0 Denial of Service via Search
CVSS 6.2
CVE-2018-9557 HIGH
Android 7.0-7.1.2 - Use-After-Free in really_install_package
CVSS 7.8
CVE-2018-6836 CRITICAL
Wireshark < 2.4.4 - Use-After-Free in netmonrec_comment_destroy
CVSS 9.8
CVE-2017-18075 HIGH
Linux Kernel < 4.14.13 - Use-After-Free in crypto/pcrypt.c
CVSS 7.8
CVE-2017-0731 HIGH
Android <7.1.2 - Privilege Escalation
CVSS 7.8
CVE-2015-2695
MIT Kerberos 5 < 1.14 - Denial of Service via SPNEGO Packet Mishandling
CVE-2013-4695 HIGH
Winamp 5.63 - Arbitrary Code Execution via Invalid Pointer Dereference
CVSS 7.8
CVE-2007-4367
Opera <9.23 - Remote Code Execution
Details
Vulnerabilities 92
Links
MITRE CWE Entry Search this CWE With Exploits