CWE-416— Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.— MITRE CWE catalog
7,398 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-416page 118 of 148
- CVE-2025-54912HIGHCVSS 7.8EG 7.82025-09-09
Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally.
- CVE-2025-54913HIGHCVSS 7.8EG 7.82025-09-09
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows UI XAML Maps MapControlSettings allows an authorized attacker to elevate privileges locally.
- CVE-2025-55118HIGHCVSS 8.9EG 8.92025-09-16
Memory corruptions can be remotely triggered in the Control-M/Agent when SSL/TLS communication is configured. The issue occurs in the following cases: * Control-M/Agent 9.0.20: SSL/TLS configuration is set to the non-default setting …
- CVE-2025-55157HIGHCVSS 8.8EG 8.82025-08-11
Vim is an open source, command line text editor. In versions from 9.1.1231 to before 9.1.1400, When processing nested tuples in Vim script, an error during evaluation can trigger a use-after-free in Vim’s internal tuple reference managem…
- CVE-2025-55223HIGHCVSS 7.0EG 7.02025-09-09
Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.
- CVE-2025-55224HIGHCVSS 7.8EG 7.82025-09-09
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally.
- CVE-2025-55228HIGHCVSS 7.8EG 7.82025-09-09
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally.
- CVE-2025-55308MEDIUMCVSS 6.7EG 6.72025-12-11
An issue was discovered in Foxit PDF and Editor for Windows before 13.2 and 2025 before 2025.2. A crafted PDF containing JavaScript that calls closeDoc() while internal objects are still in use can cause premature release of these objects.…
- CVE-2025-55309MEDIUMCVSS 6.7EG 6.72025-12-11
An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. A crafted PDF can contain JavaScript that attaches an OnBlur action on a form field that destroys an annotation. During user right-cl…
- CVE-2025-55326HIGHCVSS 7.5EG 7.52025-10-14
Use after free in Connected Devices Platform Service (Cdpsvc) allows an unauthorized attacker to execute code over a network.
- CVE-2025-55331HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- CVE-2025-55335HIGHCVSS 7.4EG 7.42025-10-14
Use after free in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-55644MEDIUMCVSS 5.5EG 5.52026-06-15
A heap use-after-free in the gf_node_get_tag function (scenegraph/base_scenegraph.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
- CVE-2025-55650MEDIUMCVSS 5.5EG 5.52026-06-15
A heap use-after-free in the gf_node_get_tag function (scenegraph/base_scenegraph.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
- CVE-2025-55678HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.
- CVE-2025-55684HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- CVE-2025-55685HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- CVE-2025-55686HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- CVE-2025-55687HIGHCVSS 7.4EG 7.42025-10-14
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Resilient File System (ReFS) allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-55688HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- CVE-2025-55689HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- CVE-2025-55690HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- CVE-2025-55691HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- CVE-2025-55693HIGHCVSS 7.4EG 7.42025-10-14
Use after free in Windows Kernel allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-5644LOWCVSS 2.5EG 2.52025-06-05
A vulnerability, which was classified as problematic, has been found in Radare2 5.9.9. Affected by this issue is the function r_cons_flush in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads…
- CVE-2025-57108CRITICALCVSS 9.8EG 9.82025-10-31
Kitware VTK (Visualization Toolkit) through 9.5.0 contains a heap use-after-free vulnerability in vtkGLTFDocumentLoader. The vulnerability manifests during mesh object copy operations where vector members are accessed after the underlying …
- CVE-2025-57109MEDIUMCVSS 6.5EG 6.52025-10-30
Kitware VTK (Visualization Toolkit) 9.5.0 is vulnerable to Heap Use-After-Free in vtkGLTFImporter::ImportActors. When processing GLTF files with invalid scene node references, the application accesses string members of mesh objects that ha…
- CVE-2025-57616HIGHCVSS 7.5EG 7.52025-09-02
An issue was discovered in rust-ffmpeg 0.3.0 (after comit 5ac0527) A use-after-free vulnerability in the write_interleaved method allows an attacker to cause a denial of service or memory corruption. The method violates Rust's aliasing rul…
- CVE-2025-58287HIGHCVSS 7.8EG 7.82025-10-11
Use After Free (UAF) vulnerability in the office service. Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-58299HIGHCVSS 8.4EG 8.42025-10-11
Use After Free (UAF) vulnerability in the storage management module. Successful exploitation of this vulnerability may affect availability.
- CVE-2025-58303HIGHCVSS 8.4EG 8.42025-11-28
UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-58307MEDIUMCVSS 6.4EG 6.42025-11-28
UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-58311MEDIUMCVSS 5.8EG 5.82025-11-28
UAF vulnerability in the USB driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- CVE-2025-58408MEDIUMCVSS 5.9EG 5.92025-12-01
Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger reads of stale data that can lead to kernel exceptions and write use-after-free. The Use After Free common weakness enumeration was chose…
- CVE-2025-58411HIGHCVSS 8.8EG 8.82026-01-13
Software installed and run as a non-privileged user may conduct improper GPU system calls to cause mismanagement of resources reference counting creating a potential use after free scenario. Improper resource management and reference coun…
- CVE-2025-58718HIGHCVSS 8.8EG 8.82025-10-14
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
- CVE-2025-58719MEDIUMCVSS 4.7EG 4.72025-10-14
Use after free in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.
- CVE-2025-58728HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
- CVE-2025-58730HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- CVE-2025-58731HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- CVE-2025-58732HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- CVE-2025-58733HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- CVE-2025-58734HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- CVE-2025-58735HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- CVE-2025-58736HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- CVE-2025-58737HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows Remote Desktop allows an unauthorized attacker to execute code locally.
- CVE-2025-58738HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- CVE-2025-59189HIGHCVSS 7.4EG 7.42025-10-14
Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-59195HIGHCVSS 7.0EG 7.02025-10-14
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to deny service locally.
- CVE-2025-59196HIGHCVSS 7.0EG 7.02025-10-14
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.
Map vulnerabilities like CWE-416 to your infrastructure
EchelonGraph correlates every CVE — across CWE-416 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →