CWE-416

Use After Free

VariantStableLikelihood: High

Description

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

Hierarchy (View 1000)

Parents

CWE-825

Children

none

CVEs mapped to this weakness (1,889)

page 36 of 95

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2026-6297	Google Chrome	Hig	0.54	8.3	0.00	Apr 15, 2026	Use after free in Proxy in Google Chrome prior to 147.0.7727.101 allowed an attacker in a privileged network position to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2017-8824	Linux Kernel	Hig	0.54	7.8	0.01	Dec 5, 2017	The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state.
CVE-2017-7185	Cesanta Mongoose Embedded Web Server Library	Hig	0.54	7.5	0.33	Apr 10, 2017	Use-after-free vulnerability in the mg_http_multipart_wait_for_boundary function in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.7 and earlier and Mongoose OS 1.2 and earlier allows remote attackers to cause a denial of service (crash) via a multipart/form-data…
CVE-2017-2472	Apple Inc. tvOS	Hig	0.54	7.8	0.05	Apr 2, 2017	An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a…
CVE-2017-2360	Apple Inc. tvOS	Hig	0.54	7.8	0.03	Feb 20, 2017	An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. macOS before 10.12.3 is affected. tvOS before 10.1.1 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a…
CVE-2017-2353	Apple Inc. macOS	Hig	0.54	7.8	0.02	Feb 20, 2017	An issue was discovered in certain Apple products. macOS before 10.12.3 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (use-after-free) via a crafted app.
CVE-2016-7644	Apple Inc. watchOS	Hig	0.54	7.8	0.04	Feb 20, 2017	An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial…
CVE-2016-7633	Apple Inc. macOS	Hig	0.54	7.8	0.00	Feb 20, 2017	An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "Directory Services" component. It allows local users to gain privileges or cause a denial of service (use-after-free) via unspecified vectors.
CVE-2016-7621	Apple Inc. watchOS	Hig	0.54	7.8	0.00	Feb 20, 2017	An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows local users to execute arbitrary code in a privileged context or cause a…
CVE-2016-4625	Apple Inc. OS X	Hig	0.54	7.8	0.01	Jul 22, 2016	Use-after-free vulnerability in IOSurface in Apple OS X before 10.11.6 allows local users to gain privileges via unspecified vectors.
CVE-2016-1863	Apple Inc. tvOS	Hig	0.54	7.8	0.00	Jul 22, 2016	The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4582 and CVE-2016-4653.
CVE-2016-1819	Apple Inc. tvOS	Hig	0.54	7.8	0.06	May 20, 2016	Use-after-free vulnerability in the IOAccelContext2::clientMemoryForType method in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory…
CVE-2012-1539	Microsoft Internet Explorer	Hig	0.54	8.1	0.19	Nov 14, 2012	Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code via a crafted web site, aka "CTreePos Use After Free Vulnerability."
CVE-2010-2547	Gnupg Gnupg	Hig	0.54	8.1	0.15	Aug 5, 2010	Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2.x through 2.0.16 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a certificate with a large number of Subject Alternate Names, which is not properly handled…
CVE-2026-45599	—	Hig	0.53	8.1	0.00	Jun 9, 2026	Use after free in Universal Plug and Play (upnp.dll) allows an unauthorized attacker to execute code over a network.
CVE-2026-45476	Microsoft Linux MANA Driver	Hig	0.53	8.2	0.00	Jun 9, 2026	Use after free in Linux MANA Driver allows an authorized attacker to elevate privileges locally.
CVE-2026-42987	Microsoft Windows AppX Deployment Service	Hig	0.53	8.1	0.00	Jun 9, 2026	Use after free in Windows Deployment Services allows an unauthorized attacker to execute code over a network.
CVE-2026-11643	Google Chrome	Hig	0.53	8.1	0.00	Jun 9, 2026	Use after free in Proxy in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Critical)
CVE-2026-11224	Google Chrome	Hig	0.53	8.1	0.00	Jun 4, 2026	Use after free in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Low)
CVE-2026-11185	Google Chrome	Hig	0.53	8.1	0.00	Jun 4, 2026	Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome Extension. (Chromium security severity: Medium)

CVE-2026-6297HigApr 15, 2026
Google
Chrome
risk 0.54cvss 8.3epss 0.00
Use after free in Proxy in Google Chrome prior to 147.0.7727.101 allowed an attacker in a privileged network position to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2017-8824HigDec 5, 2017
Linux
Kernel
risk 0.54cvss 7.8epss 0.01
The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state.
CVE-2017-7185HigApr 10, 2017
Cesanta
Mongoose Embedded Web Server Library
risk 0.54cvss 7.5epss 0.33
Use-after-free vulnerability in the mg_http_multipart_wait_for_boundary function in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.7 and earlier and Mongoose OS 1.2 and earlier allows remote attackers to cause a denial of service (crash) via a multipart/form-data…
CVE-2017-2472HigApr 2, 2017
Apple Inc.
tvOS
risk 0.54cvss 7.8epss 0.05
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a…
CVE-2017-2360HigFeb 20, 2017
Apple Inc.
tvOS
risk 0.54cvss 7.8epss 0.03
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. macOS before 10.12.3 is affected. tvOS before 10.1.1 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a…
CVE-2017-2353HigFeb 20, 2017
Apple Inc.
macOS
risk 0.54cvss 7.8epss 0.02
An issue was discovered in certain Apple products. macOS before 10.12.3 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (use-after-free) via a crafted app.
CVE-2016-7644HigFeb 20, 2017
Apple Inc.
watchOS
risk 0.54cvss 7.8epss 0.04
An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial…
CVE-2016-7633HigFeb 20, 2017
Apple Inc.
macOS
risk 0.54cvss 7.8epss 0.00
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "Directory Services" component. It allows local users to gain privileges or cause a denial of service (use-after-free) via unspecified vectors.
CVE-2016-7621HigFeb 20, 2017
Apple Inc.
watchOS
risk 0.54cvss 7.8epss 0.00
An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows local users to execute arbitrary code in a privileged context or cause a…
CVE-2016-4625HigJul 22, 2016
Apple Inc.
OS X
risk 0.54cvss 7.8epss 0.01
Use-after-free vulnerability in IOSurface in Apple OS X before 10.11.6 allows local users to gain privileges via unspecified vectors.
CVE-2016-1863HigJul 22, 2016
Apple Inc.
tvOS
risk 0.54cvss 7.8epss 0.00
The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4582 and CVE-2016-4653.
CVE-2016-1819HigMay 20, 2016
Apple Inc.
tvOS
risk 0.54cvss 7.8epss 0.06
Use-after-free vulnerability in the IOAccelContext2::clientMemoryForType method in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory…
CVE-2012-1539HigNov 14, 2012
Microsoft
Internet Explorer
risk 0.54cvss 8.1epss 0.19
Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code via a crafted web site, aka "CTreePos Use After Free Vulnerability."
CVE-2010-2547HigAug 5, 2010
Gnupg
Gnupg
risk 0.54cvss 8.1epss 0.15
Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2.x through 2.0.16 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a certificate with a large number of Subject Alternate Names, which is not properly handled…
CVE-2026-45599HigJun 9, 2026
risk 0.53cvss 8.1epss 0.00
Use after free in Universal Plug and Play (upnp.dll) allows an unauthorized attacker to execute code over a network.
CVE-2026-45476HigJun 9, 2026
Microsoft
Linux MANA Driver
risk 0.53cvss 8.2epss 0.00
Use after free in Linux MANA Driver allows an authorized attacker to elevate privileges locally.
CVE-2026-42987HigJun 9, 2026
Microsoft
Windows AppX Deployment Service
risk 0.53cvss 8.1epss 0.00
Use after free in Windows Deployment Services allows an unauthorized attacker to execute code over a network.
CVE-2026-11643HigJun 9, 2026
Google
Chrome
risk 0.53cvss 8.1epss 0.00
Use after free in Proxy in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Critical)
CVE-2026-11224HigJun 4, 2026
Google
Chrome
risk 0.53cvss 8.1epss 0.00
Use after free in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Low)
CVE-2026-11185HigJun 4, 2026
Google
Chrome
risk 0.53cvss 8.1epss 0.00
Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome Extension. (Chromium security severity: Medium)