CWE-416— Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.— MITRE CWE catalog
7,388 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-416page 60 of 148
- CVE-2022-2938HIGHCVSS 7.8EG 7.82022-08-23
A flaw was found in the Linux kernel's implementation of Pressure Stall Information. While the feature is disabled by default, it could allow an attacker to crash the system or have other memory-corruption side effects.
- CVE-2022-2946HIGHCVSS 7.8EG 7.82022-08-23
Use After Free in GitHub repository vim/vim prior to 9.0.0246.
- CVE-2022-29522HIGHCVSS 7.8EG 7.82022-06-14
Use after free vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a spec…
- CVE-2022-29581HIGHCVSS 7.8EG 7.82022-05-17
Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions.
- CVE-2022-29582HIGHCVSS 7.0EG 7.02022-04-22
In the Linux kernel before 5.17.3, fs/io_uring.c has a use-after-free due to a race condition in io_uring timeouts. This can be triggered by a local user who has no access to any user namespace; however, the race condition perhaps can only…
- CVE-2022-2961HIGHCVSS 7.0EG 7.02022-08-29
A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. This flaw allows a local user to crash or …
- CVE-2022-29692HIGHCVSS 7.8EG 7.82022-06-02
Unicorn Engine v1.0.3 was discovered to contain a use-after-free vulnerability via the hook function.
- CVE-2022-2977HIGHCVSS 7.8EG 7.82022-09-14
A flaw was found in the Linux kernel implementation of proxied virtualized TPM devices. On a system where virtualized TPM devices are configured (this is not the default) a local attacker can create a use-after-free and create a situation …
- CVE-2022-2978HIGHCVSS 7.8EG 7.82022-08-24
A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function security_inode_alloc to fail with following call to function nilfs_mdt_destroy. A local user could use this flaw to crash the system or…
- CVE-2022-2979HIGHCVSS 7.8EG 7.82022-09-12
Opening a specially crafted file could cause the affected product to fail to release its memory reference potentially resulting in arbitrary code execution.
- CVE-2022-29794CRITICALCVSS 9.8EG 9.82022-05-13
The frame scheduling module has a Use After Free (UAF) vulnerability.Successful exploitation of this vulnerability will affect data integrity, availability, and confidentiality.
- CVE-2022-2982HIGHCVSS 7.8EG 7.82022-08-25
Use After Free in GitHub repository vim/vim prior to 9.0.0260.
- CVE-2022-29919HIGHCVSS 7.8EG 7.82023-05-10
Use after free in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2022-2998HIGHCVSS 8.8EG 8.82022-09-26
Use after free in Browser Creation in Google Chrome prior to 104.0.5112.101 allowed a remote attacker who had convinced a user to engage in a specific UI interaction to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-30065HIGHCVSS 7.8EG 7.82022-05-18
A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function.
- CVE-2022-3016HIGHCVSS 7.8EG 7.82022-08-28
Use After Free in GitHub repository vim/vim prior to 9.0.0286.
- CVE-2022-3037HIGHCVSS 7.8EG 7.82022-08-30
Use After Free in GitHub repository vim/vim prior to 9.0.0322.
- CVE-2022-3038HIGHCVSS 8.8EG 9.0⚠ KEV2022-09-26
Use after free in Network Service in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-3039HIGHCVSS 8.8EG 8.82022-09-26
Use after free in WebSQL in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-3040HIGHCVSS 8.8EG 8.82022-09-26
Use after free in Layout in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-3041HIGHCVSS 8.8EG 8.82022-09-26
Use after free in WebSQL in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-3042HIGHCVSS 8.8EG 8.82022-09-26
Use after free in PhoneHub in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-3046HIGHCVSS 8.8EG 8.82022-09-26
Use after free in Browser Tag in Google Chrome prior to 105.0.5195.52 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-3049HIGHCVSS 8.8EG 8.82022-09-26
Use after free in SplitScreen in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-30539HIGHCVSS 7.5EG 6.72023-02-16
Use after free in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2022-3055HIGHCVSS 8.8EG 8.82022-09-26
Use after free in Passwords in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page.
- CVE-2022-3058HIGHCVSS 8.8EG 8.82022-09-26
Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction.
- CVE-2022-30644HIGHCVSS 7.8EG 7.82023-09-07
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by a Use-After-Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires u…
- CVE-2022-30647HIGHCVSS 7.8EG 7.82022-06-15
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by a Use-After-Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires u…
- CVE-2022-30648HIGHCVSS 7.8EG 7.82022-06-15
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by a Use-After-Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires u…
- CVE-2022-30655HIGHCVSS 7.8EG 7.82022-06-16
Adobe InCopy versions 17.2 (and earlier) and 16.4.1 (and earlier) are affected by a Use-After-Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user int…
- CVE-2022-30657HIGHCVSS 7.8EG 7.82022-06-16
Adobe InCopy versions 17.2 (and earlier) and 16.4.1 (and earlier) are affected by a Use-After-Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user int…
- CVE-2022-3071HIGHCVSS 8.8EG 8.82022-09-26
Use after free in Tab Strip in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction.
- CVE-2022-3094HIGHCVSS 7.5EG 7.52023-01-26
Sending a flood of dynamic DNS updates may cause `named` to allocate large amounts of memory. This, in turn, may cause `named` to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is al…
- CVE-2022-3099HIGHCVSS 7.8EG 7.82022-09-03
Use After Free in GitHub repository vim/vim prior to 9.0.0360.
- CVE-2022-31146MEDIUMCVSS 6.4EG 6.42022-07-21
Wasmtime is a standalone runtime for WebAssembly. There is a bug in the Wasmtime's code generator, Cranelift, where functions using reference types may be incorrectly missing metadata required for runtime garbage collection. This means tha…
- CVE-2022-31306MEDIUMCVSS 5.5EG 5.52022-06-21
Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_array_convert_to_slow_array at src/njs_array.c.
- CVE-2022-31307MEDIUMCVSS 5.5EG 5.52022-06-21
Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_string_offset at src/njs_string.c.
- CVE-2022-3134HIGHCVSS 7.8EG 7.82022-09-06
Use After Free in GitHub repository vim/vim prior to 9.0.0389.
- CVE-2022-31747CRITICALCVSS 9.8EG 9.82022-12-22
Mozilla developers Andrew McCreight, Nicolas B. Pierron, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 100 and Firefox ESR 91.9. Some of these bugs showed evidence of memory corruption and we presume that with…
- CVE-2022-3176HIGHCVSS 7.8EG 7.82022-09-16
There exists a use-after-free in io_uring in the Linux kernel. Signalfd_poll() and binder_poll() use a waitqueue whose lifetime is the current task. It will send a POLLFREE notification to all waiters before the queue is freed. Unfortunate…
- CVE-2022-3196HIGHCVSS 8.8EG 8.82022-09-26
Use after free in PDF in Google Chrome prior to 105.0.5195.125 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)
- CVE-2022-3197HIGHCVSS 8.8EG 8.82022-09-26
Use after free in PDF in Google Chrome prior to 105.0.5195.125 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)
- CVE-2022-3198HIGHCVSS 8.8EG 8.82022-09-26
Use after free in PDF in Google Chrome prior to 105.0.5195.125 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)
- CVE-2022-3199HIGHCVSS 8.8EG 8.82022-09-26
Use after free in Frames in Google Chrome prior to 105.0.5195.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
- CVE-2022-32081HIGHCVSS 7.5EG 9.82022-07-01
MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in prepare_inplace_add_virtual at /storage/innobase/handler/handler0alter.cc.
- CVE-2022-32091HIGHCVSS 7.5EG 9.82022-07-01
MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc.
- CVE-2022-32250HIGHCVSS 7.8EG 7.82022-06-02
net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free.
- CVE-2022-32293HIGHCVSS 8.1EG 8.12022-08-03
In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution.
- CVE-2022-32317MEDIUMCVSS 5.5EG 5.52022-07-14
The MPlayer Project v1.5 was discovered to contain a heap use-after-free resulting in a double free in the preinit function at libvo/vo_v4l2.c. This vulnerability can lead to a Denial of Service (DoS) via a crafted file. The device=strdup …
Map vulnerabilities like CWE-416 to your infrastructure
EchelonGraph correlates every CVE — across CWE-416 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →