CWE-416— Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.— MITRE CWE catalog
7,392 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-416page 65 of 148
- CVE-2022-44520HIGHCVSS 7.8EG 7.82024-12-19
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205 (and earlier) are affected by a use-after-free vulnerability that could result in arbitrary code execution in the context of the current user…
- CVE-2022-44547HIGHCVSS 7.5EG 7.52022-11-09
The Display Service module has a UAF vulnerability. Successful exploitation of this vulnerability may affect the display service availability.
- CVE-2022-44550HIGHCVSS 7.5EG 7.52022-11-09
The graphics display module has a UAF vulnerability when traversing graphic layers. Successful exploitation of this vulnerability may affect system availability.
- CVE-2022-44683HIGHCVSS 7.8EG 7.82022-12-13
Windows Kernel Elevation of Privilege Vulnerability
- CVE-2022-45146MEDIUMCVSS 5.5EG 5.52022-11-21
An issue was discovered in the FIPS Java API of Bouncy Castle BC-FJA before 1.0.2.4. Changes to the JVM garbage collector in Java 13 and later trigger an issue in the BC-FJA FIPS modules where it is possible for temporary keys used by the …
- CVE-2022-45343HIGHCVSS 7.8EG 7.82022-11-29
GPAC v2.1-DEV-rev478-g696e6f868-master was discovered to contain a heap use-after-free via the Q_IsTypeOn function at /gpac/src/bifs/unquantize.c.
- CVE-2022-45405MEDIUMCVSS 6.5EG 6.52022-12-22
Freeing arbitrary <code>nsIInputStream</code>'s on a different thread than creation could have led to a use-after-free and potentially exploitable crash. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 10…
- CVE-2022-45406CRITICALCVSS 9.8EG 9.82022-12-22
If an out-of-memory condition occurred when creating a JavaScript global, a JavaScript realm may be deleted while references to it lived on in a BaseShape. This could lead to a use-after-free causing a potentially exploitable crash. This v…
- CVE-2022-45407HIGHCVSS 7.5EG 7.52022-12-22
If an attacker loaded a font using <code>FontFace()</code> on a background worker, a use-after-free could have occurred, leading to a potentially exploitable crash. This vulnerability affects Firefox < 107.
- CVE-2022-45409HIGHCVSS 8.8EG 8.82022-12-22
The garbage collector could have been aborted in several states and zones and <code>GCRuntime::finishCollection</code> may not have been called, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Fire…
- CVE-2022-45474CRITICALCVSS 9.8EG 9.82022-11-18
drachtio-server 0.8.18 has a request-handler.cpp event_cb use-after-free for any request.
- CVE-2022-45748HIGHCVSS 8.8EG 8.82023-01-20
An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaParser::ExtractDataObjectFromChannel in file /code/AssetLib/Collada/ColladaParser.cpp.
- CVE-2022-45884HIGHCVSS 7.0EG 7.02022-11-25
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvb_register_device dynamically allocating fops.
- CVE-2022-45885HIGHCVSS 7.0EG 7.02022-11-25
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_frontend.c has a race condition that can cause a use-after-free when a device is disconnected.
- CVE-2022-45886HIGHCVSS 7.0EG 7.02022-11-25
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_open race condition that leads to a use-after-free.
- CVE-2022-45888MEDIUMCVSS 6.4EG 6.42022-11-25
An issue was discovered in the Linux kernel through 6.0.9. drivers/char/xillybus/xillyusb.c has a race condition and use-after-free during physical removal of a USB device.
- CVE-2022-45919HIGHCVSS 7.0EG 7.02022-11-27
An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is there is a disconnect after an open, because of the lack of a wait_event.
- CVE-2022-46282HIGHCVSS 7.8EG 7.82022-12-21
Use after free vulnerability in CX-Drive V3.00 and earlier allows a local attacker to execute arbitrary code by having a user to open a specially crafted file,
- CVE-2022-46311HIGHCVSS 7.5EG 7.52022-12-20
The contacts component has a free (undefined) provider vulnerability. Successful exploitation of this vulnerability may affect data integrity.
- CVE-2022-46342HIGHCVSS 8.8EG 8.82022-12-14
A vulnerability was found in X.Org. This security flaw occurs because the handler for the XvdiSelectVideoNotify request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X se
- CVE-2022-46343HIGHCVSS 8.8EG 8.82022-12-14
A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the …
- CVE-2022-46394HIGHCVSS 8.8EG 8.82023-03-08
An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r39p0 through r41p0 before r42p0, and Avalon r41p0 be…
- CVE-2022-46395HIGHCVSS 8.8EG 8.82023-03-06
An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r0p0 through r32p0, Bifrost r0p0 through r41p0 before…
- CVE-2022-46712HIGHCVSS 7.8EG 7.82023-02-27
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13. An app may be able to cause unexpected system termination or potentially execute code with kernel privileges.
- CVE-2022-46880MEDIUMCVSS 6.5EG 6.52022-12-22
A missing check related to tex units could have led to a use-after-free and potentially exploitable crash.<br />*Note*: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included…
- CVE-2022-46882CRITICALCVSS 9.8EG 9.82022-12-22
A use-after-free in WebGL extensions could have led to a potentially exploitable crash. This vulnerability affects Firefox < 107, Firefox ESR < 102.6, and Thunderbird < 102.6.
- CVE-2022-46884HIGHCVSS 8.8EG 8.82023-08-24
A potential use-after-free vulnerability existed in SVG Images if the Refresh Driver was destroyed at an inopportune time. This could have lead to memory corruption or a potentially exploitable crash. *Note*: This advisory was added on De…
- CVE-2022-46891HIGHCVSS 8.8EG 8.82023-01-17
An issue was discovered in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r13p0 through r32p0, Bifro…
- CVE-2022-4696HIGHCVSS 7.8EG 7.82023-01-11
There exists a use-after-free vulnerability in the Linux kernel through io_uring and the IORING_OP_SPLICE operation. If IORING_OP_SPLICE is missing the IO_WQ_WORK_FILES flag, which signals that the operation won't use current->nsproxy, …
- CVE-2022-47093HIGHCVSS 7.8EG 7.82023-01-05
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to heap use-after-free via filters/dmx_m2ts.c:470 in m2tsdmx_declare_pid
- CVE-2022-47371MEDIUMCVSS 5.5EG 5.52023-02-12
In bt driver, there is a thread competition leads to early release of resources to be accessed. This could lead to local denial of service in kernel.
- CVE-2022-47460MEDIUMCVSS 5.5EG 5.52023-03-10
In gpu device, there is a memory corruption due to a use after free. This could lead to local denial of service in kernel.
- CVE-2022-47939CRITICALCVSS 9.8EG 9.82022-12-23
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c has a use-after-free and OOPS for SMB2_TREE_DISCONNECT.
- CVE-2022-47946MEDIUMCVSS 5.5EG 5.52022-12-23
An issue was discovered in the Linux kernel 5.10.x before 5.10.155. A use-after-free in io_sqpoll_wait_sq in fs/io_uring.c allows an attacker to crash the kernel, resulting in denial of service. finish_wait can be skipped. An attack can oc…
- CVE-2022-48340HIGHCVSS 7.5EG 7.52023-02-21
In Gluster GlusterFS 11.0, there is an xlators/cluster/dht/src/dht-common.c dht_setxattr_mds_cbk use-after-free.
- CVE-2022-48386MEDIUMCVSS 4.4EG 4.42023-05-09
the apipe driver, there is a possible use after free due to a logic error. This could lead to local denial of service with System execution privileges needed.
- CVE-2022-48434HIGHCVSS 8.1EG 8.12023-03-29
libavcodec/pthread_frame.c in FFmpeg before 5.1.2, as used in VLC and other products, leaves stale hwaccel state in worker threads, which allows attackers to trigger a use-after-free and execute arbitrary code in some circumstances (e.g., …
- CVE-2022-48511CRITICALCVSS 9.8EG 9.82023-07-06
Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions. Successful exploitation of this vulnerability may cause audio features to perform abnormally.
- CVE-2022-48512CRITICALCVSS 9.8EG 9.82023-07-06
Use After Free (UAF) vulnerability in the Vdecoderservice service. Successful exploitation of this vulnerability may cause the image decoding feature to perform abnormally.
- CVE-2022-48560HIGHCVSS 7.5EG 7.52023-08-22
A use-after-free exists in Python through 3.9 via heappushpop in heapq.
- CVE-2022-48626HIGHCVSS 7.8EG 7.82024-02-26
In the Linux kernel, the following vulnerability has been resolved: moxart: fix potential use-after-free on remove path It was reported that the mmc host structure could be accessed after it was freed in moxart_remove(), so fix this by s…
- CVE-2022-48637HIGHCVSS 7.8EG 7.82024-04-28
In the Linux kernel, the following vulnerability has been resolved: bnxt: prevent skb UAF after handing over to PTP worker When reading the timestamp is required bnxt_tx_int() hands over the ownership of the completed skb to the PTP work…
- CVE-2022-48649HIGHCVSS 7.8EG 7.82024-04-28
In the Linux kernel, the following vulnerability has been resolved: mm/slab_common: fix possible double free of kmem_cache When doing slub_debug test, kfence's 'test_memcache_typesafe_by_rcu' kunit test case cause a use-after-free error:…
- CVE-2022-48666HIGHCVSS 7.4EG 7.42024-04-28
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix a use-after-free There are two .exit_cmd_priv implementations. Both implementations use resources associated with the SCSI host. Make sure that these res…
- CVE-2022-48670HIGHCVSS 7.8EG 7.82024-05-03
In the Linux kernel, the following vulnerability has been resolved: peci: cpu: Fix use-after-free in adev_release() When auxiliary_device_add() returns an error, auxiliary_device_uninit() is called, which causes refcount for device to be…
- CVE-2022-48674HIGHCVSS 7.8EG 7.82024-05-03
In the Linux kernel, the following vulnerability has been resolved: erofs: fix pcluster use-after-free on UP platforms During stress testing with CONFIG_SMP disabled, KASAN reports as below: =============================================…
- CVE-2022-48686HIGHCVSS 7.8EG 7.82024-05-03
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix UAF when detecting digest errors We should also bail from the io_work loop when we set rd_enabled to true, so we don't attempt to read data from the socket…
- CVE-2022-48695HIGHCVSS 7.8EG 7.82024-05-03
In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix use-after-free warning Fix the following use-after-free warning which is observed during controller reset: refcount_t: underflow; use-after-free. WAR…
- CVE-2022-48697MEDIUMCVSS 5.3EG 5.32024-05-03
In the Linux kernel, the following vulnerability has been resolved: nvmet: fix a use-after-free Fix the following use-after-free complaint triggered by blktests nvme/004: BUG: KASAN: user-memory-access in blk_mq_complete_request_remote+…
- CVE-2022-48726HIGHCVSS 7.8EG 7.82024-06-20
In the Linux kernel, the following vulnerability has been resolved: RDMA/ucma: Protect mc during concurrent multicast leaves Partially revert the commit mentioned in the Fixes line to make sure that allocation and erasing multicast struc…
Map vulnerabilities like CWE-416 to your infrastructure
EchelonGraph correlates every CVE — across CWE-416 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →