CWE-416— Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.— MITRE CWE catalog
7,387 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-416page 53 of 148
- CVE-2022-0615MEDIUMCVSS 5.9EG 7.52022-02-25
Use-after-free in eset_rtp kernel module used in ESET products for Linux allows potential attacker to trigger denial-of-service condition on the system.
- CVE-2022-0646HIGHCVSS 7.8EG 7.82022-02-18
A flaw use after free in the Linux kernel Management Component Transport Protocol (MCTP) subsystem was found in the way user triggers cancel_work_sync after the unregister_netdev during removing device. A local user could use this flaw to …
- CVE-2022-0699CRITICALCVSS 9.8EG 9.82022-10-17
A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older releases. This issue may allow an attacker to cause a denial of service or have other unspecified impact via control over malloc.
- CVE-2022-0790CRITICALCVSS 9.6EG 9.62022-04-05
Use after free in Cast UI in Google Chrome prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially perform a sandbox escape via a crafted HTML page.
- CVE-2022-0791HIGHCVSS 8.8EG 8.82022-04-05
Use after free in Omnibox in Google Chrome prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via user interactions.
- CVE-2022-0793HIGHCVSS 8.8EG 6.52022-04-05
Use after free in Cast in Google Chrome prior to 99.0.4844.51 allowed an attacker who convinced a user to install a malicious extension and engage in specific user interaction to potentially exploit heap corruption via a crafted Chrome Ext…
- CVE-2022-0794HIGHCVSS 8.8EG 8.82022-04-05
Use after free in WebShare in Google Chrome prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-0796HIGHCVSS 8.8EG 8.82022-04-05
Use after free in Media in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-0798HIGHCVSS 8.8EG 8.82022-04-05
Use after free in MediaStream in Google Chrome prior to 99.0.4844.51 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.
- CVE-2022-0805HIGHCVSS 8.8EG 8.82022-04-05
Use after free in Browser Switcher in Google Chrome prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via user interaction.
- CVE-2022-0808HIGHCVSS 8.8EG 8.82022-04-05
Use after free in Chrome OS Shell in Google Chrome on Chrome OS prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in a series of user interaction to potentially exploit heap corruption via user interactions.
- CVE-2022-0849MEDIUMCVSS 5.5EG 5.52022-03-05
Use After Free in r_reg_get_name_idx in GitHub repository radareorg/radare2 prior to 5.6.6.
- CVE-2022-0934HIGHCVSS 7.5EG 7.52022-08-29
A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially causing a denial of service.
- CVE-2022-0971HIGHCVSS 8.8EG 8.82022-07-21
Use after free in Blink Layout in Google Chrome on Android prior to 99.0.4844.74 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-0972HIGHCVSS 8.8EG 8.82022-07-21
Use after free in Extensions in Google Chrome prior to 99.0.4844.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-0973CRITICALCVSS 9.6EG 8.62022-07-21
Use after free in Safe Browsing in Google Chrome prior to 99.0.4844.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-0974HIGHCVSS 8.8EG 6.52022-07-21
Use after free in Splitscreen in Google Chrome on Chrome OS prior to 99.0.4844.74 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-0975HIGHCVSS 8.8EG 7.52022-07-21
Use after free in ANGLE in Google Chrome prior to 99.0.4844.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-0977CRITICALCVSS 9.6EG 9.62022-07-21
Use after free in Browser UI in Google Chrome on Chrome OS prior to 99.0.4844.74 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-0978HIGHCVSS 8.8EG 7.52022-07-22
Use after free in ANGLE in Google Chrome prior to 99.0.4844.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-0979HIGHCVSS 8.8EG 6.52022-07-22
Use after free in Safe Browsing in Google Chrome on Android prior to 99.0.4844.74 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-0980HIGHCVSS 8.8EG 8.82022-07-22
Use after free in New Tab Page in Google Chrome prior to 99.0.4844.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific user interactions.
- CVE-2022-1011HIGHCVSS 7.8EG 7.82022-03-18
A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). This flaw allows a local user to gain unauthorized access to data from the FUSE filesystem, resulting in privilege escalation.
- CVE-2022-1031HIGHCVSS 7.8EG 7.82022-03-22
Use After Free in op_is_set_bp in GitHub repository radareorg/radare2 prior to 5.6.6.
- CVE-2022-1043HIGHCVSS 8.8EG 8.82022-08-29
A flaw was found in the Linux kernel’s io_uring implementation. This flaw allows an attacker with a local account to corrupt system memory, crash the system or escalate privileges.
- CVE-2022-1048HIGHCVSS 7.0EG 7.02022-04-29
A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a…
- CVE-2022-1050HIGHCVSS 8.8EG 8.82022-03-29
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to execute HW commands when shared buffers are not yet allocated, potentially leading to a use-after-free condition.
- CVE-2022-1055HIGHCVSS 7.8EG 7.82022-03-29
A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation. The exploit requires unprivileged user namespaces. We recommend upgrading past commit 04c2a47ffb13c29778e2a14e414…
- CVE-2022-1071HIGHCVSS 8.2EG 8.22022-03-26
User after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2.
- CVE-2022-1097MEDIUMCVSS 6.5EG 6.52022-12-22
<code>NSSToken</code> objects were referenced via direct points, and could have been accessed in an unsafe way on different threads, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91…
- CVE-2022-1106CRITICALCVSS 9.1EG 9.12022-03-27
use after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2.
- CVE-2022-1114HIGHCVSS 7.1EG 7.12022-04-29
A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leadi…
- CVE-2022-1125HIGHCVSS 8.8EG 8.82022-07-23
Use after free in Portals in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via user interaction.
- CVE-2022-1127HIGHCVSS 8.8EG 8.82022-07-23
Use after free in QR Code Generator in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via user interaction.
- CVE-2022-1131HIGHCVSS 8.8EG 8.82022-07-23
Use after free in Cast UI in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-1133HIGHCVSS 8.8EG 8.82022-07-23
Use after free in WebRTC Perf in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-1135HIGHCVSS 8.8EG 8.82022-07-23
Use after free in Shopping Cart in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to potentially exploit heap corruption via standard feature user interaction.
- CVE-2022-1136HIGHCVSS 8.8EG 8.82022-07-23
Use after free in Tab Strip in Google Chrome prior to 100.0.4896.60 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific set of user gestures.
- CVE-2022-1141HIGHCVSS 8.8EG 8.82022-07-23
Use after free in File Manager in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via specific user gesture.
- CVE-2022-1144HIGHCVSS 8.8EG 8.82022-07-23
Use after free in WebUI in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via specific input into DevTools.
- CVE-2022-1145HIGHCVSS 7.5EG 7.52022-07-23
Use after free in Extensions in Google Chrome prior to 100.0.4896.60 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific user interaction and profile destruction.
- CVE-2022-1154HIGHCVSS 7.8EG 9.82022-03-30
Use after free in utf_ptr2char in GitHub repository vim/vim prior to 8.2.4646.
- CVE-2022-1158HIGHCVSS 7.8EG 7.82022-08-05
A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users o…
- CVE-2022-1184MEDIUMCVSS 5.5EG 5.52022-08-29
A use-after-free flaw was found in fs/ext4/namei.c:dx_insert_block() in the Linux kernel’s filesystem sub-component. This flaw allows a local attacker with a user privilege to cause a denial of service.
- CVE-2022-1195MEDIUMCVSS 5.5EG 5.52022-04-29
A use-after-free vulnerability was found in the Linux kernel in drivers/net/hamradio. This flaw allows a local attacker with a user privilege to cause a denial of service (DOS) when the mkiss or sixpack device is detached and reclaim resou…
- CVE-2022-1196MEDIUMCVSS 6.5EG 6.52022-12-22
After a VR Process is destroyed, a reference to it may have been retained and used, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8 and Firefox ESR < 91.8.
- CVE-2022-1198MEDIUMCVSS 5.5EG 5.52022-08-29
A use-after-free vulnerabilitity was discovered in drivers/net/hamradio/6pack.c of linux that allows an attacker to crash linux kernel by simulating ax25 device using 6pack driver from user space.
- CVE-2022-1199HIGHCVSS 7.5EG 7.52022-08-29
A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the user space, resulting in a null-ptr-deref vulnerability and a use-after-free vulnerability.
- CVE-2022-1204MEDIUMCVSS 5.5EG 5.52022-08-29
A use-after-free flaw was found in the Linux kernel’s Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw allows a local user to crash the system.
- CVE-2022-1205MEDIUMCVSS 4.7EG 4.72022-08-31
A NULL pointer dereference flaw was found in the Linux kernel’s Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw allows a local user to crash the system.
Map vulnerabilities like CWE-416 to your infrastructure
EchelonGraph correlates every CVE — across CWE-416 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →