CWE-416— Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.— MITRE CWE catalog
7,398 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-416page 119 of 148
- CVE-2025-59202HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges locally.
- CVE-2025-59206HIGHCVSS 7.4EG 7.42025-10-14
Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability
- CVE-2025-59210HIGHCVSS 7.4EG 7.42025-10-14
Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability
- CVE-2025-59215HIGHCVSS 7.0EG 7.02025-09-18
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
- CVE-2025-59216HIGHCVSS 7.0EG 7.02025-09-18
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
- CVE-2025-59220HIGHCVSS 7.0EG 7.02025-09-18
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
- CVE-2025-59221HIGHCVSS 7.0EG 7.02025-10-14
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2025-59222HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2025-59223HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-59224HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-59225HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-59226HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally.
- CVE-2025-59227HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2025-59234HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2025-59236HIGHCVSS 8.4EG 8.42025-10-14
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-59238HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
- CVE-2025-59243HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-59282HIGHCVSS 7.0EG 7.02025-10-14
Concurrent execution using shared resource with improper synchronization ('race condition') in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- CVE-2025-59290HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
- CVE-2025-59515HIGHCVSS 7.0EG 7.02025-11-11
Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate privileges locally.
- CVE-2025-5958HIGHCVSS 8.8EG 8.82025-06-11
Use after free in Media in Google Chrome prior to 137.0.7151.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
- CVE-2025-59615HIGHCVSS 7.8EG 6.62026-07-06
Memory Corruption when invoking device input/output control operations for mapping and unmapping persistent memory buffers due to improper synchronization.
- CVE-2025-59616HIGHCVSS 7.8EG 6.62026-07-06
Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input due to accessing already freed memory.
- CVE-2025-59617HIGHCVSS 7.3EG 6.62026-07-06
Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input.
- CVE-2025-59734HIGHCVSS 8.7EG 8.72025-10-06
It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion <2. When a STOR chunk is present, a subsequent FOBJ chunk will be saved in ctx->stored_frame. Stored frames can later b…
- CVE-2025-5991LOWCVSS 2.1EG 2.12025-06-11
There is a "Use After Free" vulnerability in Qt's QHttp2ProtocolHandler in the QtNetwork module. This only affects HTTP/2 handling, HTTP handling is not affected by this at all. This happens due to a race condition between how QHttp2Stream…
- CVE-2025-59946HIGHCVSS 7.5EG 7.52025-12-27
NanoMQ MQTT Broker (NanoMQ) is an Edge Messaging Platform. Prior to version 0.24.2, there is a classical data racing issue about sub info list which could result in heap use after free crash. This issue has been patched in version 0.24.2.
- CVE-2025-60464HIGHCVSS 7.8EG 7.82026-06-25
A use-after-free in the gf_sei_load_from_state_internal function (/filters/sei_load.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MPEG-2 TS file.
- CVE-2025-60465MEDIUMCVSS 6.1EG 6.12026-06-25
A use-after-free in the gf_filter_pid_inst_swap function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted media file.
- CVE-2025-60466MEDIUMCVSS 5.0EG 5.02026-06-25
A use-after-free in the gf_filter_pid_get_packet function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted media file.
- CVE-2025-60467HIGHCVSS 7.5EG 7.52026-06-24
A use-after-free in the gf_filter_pid_inst_swap_delete_task function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted media file.
- CVE-2025-60471MEDIUMCVSS 5.5EG 5.52026-06-24
A use-after-free in the gf_filter_pid_reconfigure_task_discard function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted media file.
- CVE-2025-60486MEDIUMCVSS 5.5EG 5.52026-06-01
A heap use-after-free in the dasher_process function (/filters/dasher.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MPEG-2 file.
- CVE-2025-60707HIGHCVSS 7.8EG 7.82025-11-11
Use after free in Multimedia Class Scheduler Service (MMCSS) allows an authorized attacker to elevate privileges locally.
- CVE-2025-60716HIGHCVSS 7.0EG 7.02025-11-11
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.
- CVE-2025-60717HIGHCVSS 7.0EG 7.02025-11-11
Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate privileges locally.
- CVE-2025-60723MEDIUMCVSS 6.3EG 6.32025-11-11
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to deny service over a network.
- CVE-2025-6119MEDIUMCVSS 5.3EG 5.32025-06-16
A vulnerability classified as critical has been found in Open Asset Import Library Assimp up to 5.4.3. Affected is the function Assimp::BVHLoader::ReadNodeChannels in the library assimp/code/AssetLib/BVH/BVHLoader.cpp. The manipulation of …
- CVE-2025-61662HIGHCVSS 7.8EG 4.92025-11-18
A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this conditi…
- CVE-2025-61692HIGHCVSS 7.8EG 7.82025-10-02
VT STUDIO versions 8.53 and prior contain a use after free vulnerability. If the product uses a specially crafted file, arbitrary code may be executed on the affected product.
- CVE-2025-61801HIGHCVSS 7.8EG 7.82025-10-14
Dimension versions 4.1.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim mus…
- CVE-2025-61802HIGHCVSS 7.8EG 7.82025-10-14
Substance3D - Stager versions 3.1.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a…
- CVE-2025-61814HIGHCVSS 7.8EG 7.82025-11-11
InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in tha…
- CVE-2025-61815HIGHCVSS 7.8EG 7.82025-11-11
InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in tha…
- CVE-2025-61817HIGHCVSS 7.8EG 7.82025-11-11
InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim…
- CVE-2025-61818HIGHCVSS 7.8EG 7.82025-11-11
InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim…
- CVE-2025-61834HIGHCVSS 7.8EG 7.82025-11-11
Substance3D - Stager versions 3.1.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a…
- CVE-2025-61842MEDIUMCVSS 5.5EG 5.52025-11-11
Format Plugins versions 1.1.1 and earlier are affected by a Use After Free vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requir…
- CVE-2025-61864HIGHCVSS 7.8EG 7.82025-10-10
A use after free vulnerability exists in VS6ComFile!load_link_inf of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end (ABEND), and arbitrary code execution.
- CVE-2025-6192HIGHCVSS 8.8EG 8.82025-06-18
Use after free in Metrics in Google Chrome prior to 137.0.7151.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Map vulnerabilities like CWE-416 to your infrastructure
EchelonGraph correlates every CVE — across CWE-416 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →