CWE-416— Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.— MITRE CWE catalog
7,392 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-416page 76 of 148
- CVE-2023-32616HIGHCVSS 8.8EG 8.82023-11-27
A use-after-free vulnerability exists in the way Foxit Reader 12.1.2.15356 handles 3D annotations. A specially crafted Javascript code inside a malicious PDF document can trigger reuse of a previously freed object, which can lead to memory…
- CVE-2023-3269HIGHCVSS 7.8EG 7.82023-07-11
A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas (VMAs) is incorrect, leading to use-after-free problems. This issue can be successfully exploi…
- CVE-2023-3297HIGHCVSS 8.1EG 8.12023-09-01
In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus message to the accounts-daemon process.
- CVE-2023-33021HIGHCVSS 8.4EG 8.42023-09-05
Memory corruption in Graphics while processing user packets for command submission.
- CVE-2023-33029HIGHCVSS 8.4EG 8.42023-10-03
Memory corruption in DSP Service during a remote call from HLOS to DSP.
- CVE-2023-33039HIGHCVSS 8.4EG 8.42023-10-03
Memory corruption in Automotive Display while destroying the image handle created using connected display driver.
- CVE-2023-33063HIGHCVSS 7.8EG 9.0⚠ KEV2023-12-05
Memory corruption in DSP Services during a remote call from HLOS to DSP.
- CVE-2023-33074HIGHCVSS 8.4EG 7.82023-11-07
Memory corruption in Audio when SSR event is triggered after music playback is stopped.
- CVE-2023-33094HIGHCVSS 8.4EG 8.42024-01-02
Memory corruption while running VK synchronization with KASAN enabled.
- CVE-2023-33106HIGHCVSS 8.4EG 9.0⚠ KEV2023-12-05
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
- CVE-2023-33108HIGHCVSS 8.4EG 8.42024-01-02
Memory corruption in Graphics Driver when destroying a context with KGSL_GPU_AUX_COMMAND_TIMELINE objects queued.
- CVE-2023-33114HIGHCVSS 8.4EG 8.42024-01-02
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
- CVE-2023-33117HIGHCVSS 7.8EG 7.82024-01-02
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.
- CVE-2023-33118HIGHCVSS 7.8EG 7.82024-01-02
Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL.
- CVE-2023-33120HIGHCVSS 7.8EG 7.82024-01-02
Memory corruption in Audio when memory map command is executed consecutively in ADSP.
- CVE-2023-33128HIGHCVSS 7.3EG 7.32023-06-14
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2023-33149HIGHCVSS 7.8EG 7.82023-07-11
Microsoft Office Graphics Remote Code Execution Vulnerability
- CVE-2023-33153MEDIUMCVSS 6.8EG 6.82023-07-11
Microsoft Outlook Remote Code Execution Vulnerability
- CVE-2023-3317HIGHCVSS 7.1EG 7.12023-06-23
A use-after-free flaw was found in mt7921_check_offload_capability in drivers/net/wireless/mediatek/mt76/mt7921/init.c in wifi mt76/mt7921 sub-component in the Linux Kernel. This flaw could allow an attacker to crash the system after 'feat…
- CVE-2023-33200MEDIUMCVSS 4.7EG 4.72023-10-03
A local non-privileged user can make improper GPU processing operations to exploit a software race condition. If the system’s memory is carefully prepared by the user, then this in turn could give them access to already freed memory.
- CVE-2023-33250MEDIUMCVSS 4.4EG 9.82023-05-21
The Linux kernel 6.3 has a use-after-free in iopt_unmap_iova_range in drivers/iommu/iommufd/io_pagetable.c.
- CVE-2023-33288MEDIUMCVSS 4.7EG 4.72023-05-22
An issue was discovered in the Linux kernel before 6.2.9. A use-after-free was found in bq24190_remove in drivers/power/supply/bq24190_charger.c. It could allow a local attacker to crash the system due to a race condition.
- CVE-2023-33595MEDIUMCVSS 5.5EG 5.52023-06-07
CPython v3.12.0 alpha 7 was discovered to contain a heap use-after-free via the function ascii_decode at /Objects/unicodeobject.c.
- CVE-2023-33657HIGHCVSS 7.5EG 7.52023-06-08
A use-after-free vulnerability exists in NanoMQ 0.17.2. The vulnerability can be triggered by calling the function nni_mqtt_msg_get_publish_property() in the file mqtt_msg.c. This vulnerability is caused by improper data tracing, and an at…
- CVE-2023-33866HIGHCVSS 8.8EG 8.82023-07-19
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 12.1.2.15332. By prematurely deleting objects associated with pages, a specially crafted PDF document can trigger the reuse of previou…
- CVE-2023-33876HIGHCVSS 8.8EG 8.82023-07-19
A use-after-free vulnerability exists in the way Foxit Reader 12.1.2.15332 handles destroying annotations. Specially crafted Javascript code inside a malicious PDF document can trigger reuse of a previously freed object, which can lead to …
- CVE-2023-3389HIGHCVSS 7.8EG 5.52023-06-28
A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgradin…
- CVE-2023-3390HIGHCVSS 7.8EG 7.82023-06-28
A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with NFT_MSG_NEWRULE makes it possible to use a dangling pointer in the same transaction causin…
- CVE-2023-3397HIGHCVSS 7.0EG 7.02023-11-01
A race condition occurred between the functions lmLogClose and txEnd in JFS, in the Linux Kernel, executed in different threads. This flaw allows a local attacker with normal user privileges to crash the system or leak internal kernel info…
- CVE-2023-3421HIGHCVSS 8.8EG 8.82023-06-26
Use after free in Media in Google Chrome prior to 114.0.5735.198 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
- CVE-2023-3422HIGHCVSS 8.8EG 8.82023-06-26
Use after free in Guest View in Google Chrome prior to 114.0.5735.198 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Hi…
- CVE-2023-34241MEDIUMCVSS 5.3EG 5.32023-06-22
OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the conne…
- CVE-2023-34294MEDIUMCVSS 6.5EG 3.32024-05-03
Sante DICOM Viewer Pro DCM File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Sante DICOM Viewer Pro. User interaction…
- CVE-2023-34366HIGHCVSS 7.8EG 7.82023-10-19
A use-after-free vulnerability exists in the Figure stream parsing functionality of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause memory corruption, resulting in arbitrary code execution. Victim would need to open a mal…
- CVE-2023-3439MEDIUMCVSS 4.7EG 4.72023-06-28
A flaw was found in the MCTP protocol in the Linux kernel. The function mctp_unregister() reclaims the device's relevant resource when a netcard detaches. However, a running routine may be unaware of this and cause the use-after-free of th…
- CVE-2023-34475MEDIUMCVSS 5.5EG 5.52023-06-16
A heap use after free issue was discovered in ImageMagick's ReplaceXmpValue() function in MagickCore/profile.c. An attacker could trick user to open a specially crafted file to convert, triggering an heap-use-after-free write error, allowi…
- CVE-2023-34494HIGHCVSS 7.5EG 7.52023-06-12
NanoMQ 0.16.5 is vulnerable to heap-use-after-free in the nano_ctx_send function of nmq_mqtt.c.
- CVE-2023-3472HIGHCVSS 8.6EG 8.62023-09-06
Use after free vulnerability in Panasonic KW Watcher versions 1.00 through 2.82 may allow attackers to execute arbitrary code.
- CVE-2023-34795HIGHCVSS 7.8EG 7.82023-06-16
xlsxio v0.1.2 to v0.2.34 was discovered to contain a free of uninitialized pointer in the xlsxioread_sheetlist_close() function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted XLSX file.
- CVE-2023-34970MEDIUMCVSS 4.7EG 4.72023-10-03
A local non-privileged user can make improper GPU processing operations to access a limited amount outside of buffer bounds or to exploit a software race condition. If the system’s memory is carefully prepared by the user, then this in t…
- CVE-2023-35300HIGHCVSS 8.8EG 8.82023-07-11
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2023-35313HIGHCVSS 7.8EG 7.82023-07-11
Windows Online Certificate Status Protocol (OCSP) SnapIn Remote Code Execution Vulnerability
- CVE-2023-35323HIGHCVSS 7.8EG 7.82023-07-11
Windows OLE Remote Code Execution Vulnerability
- CVE-2023-35351MEDIUMCVSS 6.6EG 6.62023-07-11
Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability
- CVE-2023-35380HIGHCVSS 7.8EG 7.82023-08-08
Windows Kernel Elevation of Privilege Vulnerability
- CVE-2023-35382HIGHCVSS 7.8EG 7.82023-08-08
Windows Kernel Elevation of Privilege Vulnerability
- CVE-2023-35618CRITICALCVSS 9.6EG 9.62023-12-07
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
- CVE-2023-35628HIGHCVSS 8.1EG 8.12023-12-12
Windows MSHTML Platform Remote Code Execution Vulnerability
- CVE-2023-35658HIGHCVSS 8.8EG 8.82023-09-11
In gatt_process_prep_write_rsp of gatt_cl.cc, there is a possible privilege escalation due to a use after free. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction i…
- CVE-2023-35660MEDIUMCVSS 6.7EG 6.72023-10-11
In lwis_transaction_client_cleanup of lwis_transaction.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not …
Map vulnerabilities like CWE-416 to your infrastructure
EchelonGraph correlates every CVE — across CWE-416 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →