CWE-416— Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.— MITRE CWE catalog
7,392 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-416page 79 of 148
- CVE-2023-4004HIGHCVSS 7.8EG 7.82023-07-31
A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a local user to crash the system or potential…
- CVE-2023-40084HIGHCVSS 7.8EG 7.82023-12-04
In run of MDnsSdListener.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- CVE-2023-40088HIGHCVSS 8.8EG 8.82023-12-04
In callback_thread_event of com_android_bluetooth_btservice_AdapterService.cpp, there is a possible memory corruption due to a use after free. This could lead to remote (proximal/adjacent) code execution with no additional execution privil…
- CVE-2023-40100HIGHCVSS 7.8EG 8.42024-02-15
In discovery_thread of Dns64Configuration.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed f…
- CVE-2023-40107HIGHCVSS 7.8EG 7.42024-02-15
In ARTPWriter of ARTPWriter.cpp, there is a possible use after free due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- CVE-2023-40114HIGHCVSS 7.8EG 8.42024-02-15
In multiple functions of MtpFfsHandle.cpp , there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for ex…
- CVE-2023-40115HIGHCVSS 7.8EG 9.82024-02-15
In readLogs of StatsService.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatio…
- CVE-2023-40131HIGHCVSS 7.0EG 7.02023-10-27
In GpuService of GpuService.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- CVE-2023-40140HIGHCVSS 7.8EG 7.82023-10-27
In android_view_InputDevice_create of android_view_InputDevice.cpp, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed.…
- CVE-2023-4015HIGHCVSS 7.8EG 7.82023-09-06
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. On an error when building a nftables rule, deactivating immediate expressions in nft_immediate_dea…
- CVE-2023-40187HIGHCVSS 7.3EG 7.32023-08-31
FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions of the 3.x beta branch are subject to a Use-After-Free issue in the `avc420_ensure_buffer` and `avc444_ensure_buffe…
- CVE-2023-40283HIGHCVSS 7.8EG 7.82023-08-14
An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.
- CVE-2023-40404HIGHCVSS 7.8EG 7.82023-10-25
A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Sonoma 14.1. An app may be able to execute arbitrary code with kernel privileges.
- CVE-2023-40414CRITICALCVSS 9.8EG 9.82024-01-10
A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 10, iOS 17 and iPadOS 17, tvOS 17, macOS Sonoma 14, Safari 17. Processing web content may lead to arbitrary code execution.
- CVE-2023-40487HIGHCVSS 7.8EG 7.82024-05-03
Maxon Cinema 4D SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Maxon Cinema 4D. User interaction is required to exploit…
- CVE-2023-40488HIGHCVSS 7.8EG 7.82024-05-03
Maxon Cinema 4D SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Maxon Cinema 4D. User interaction is required to exploit…
- CVE-2023-40489HIGHCVSS 7.8EG 7.82024-05-03
Maxon Cinema 4D SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Maxon Cinema 4D. User interaction is required to exploit…
- CVE-2023-40490HIGHCVSS 7.8EG 7.82024-05-07
Maxon Cinema 4D SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Maxon Cinema 4D. User interaction is required to exploit…
- CVE-2023-40491HIGHCVSS 7.8EG 7.82024-05-03
Maxon Cinema 4D SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Maxon Cinema 4D. User interaction is required to exploit…
- CVE-2023-40632HIGHCVSS 7.5EG 7.52023-10-08
In jpg driver, there is a possible use after free due to a logic error. This could lead to remote information disclosure no additional execution privileges needed
- CVE-2023-4074HIGHCVSS 8.8EG 8.82023-08-03
Use after free in Blink Task Scheduling in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
- CVE-2023-4075HIGHCVSS 8.8EG 8.82023-08-03
Use after free in Cast in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
- CVE-2023-4076HIGHCVSS 8.8EG 8.82023-08-03
Use after free in WebRTC in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted WebRTC session. (Chromium security severity: High)
- CVE-2023-41000MEDIUMCVSS 5.5EG 5.52023-09-11
GPAC through 2.2.1 has a use-after-free vulnerability in the function gf_bifs_flush_command_list in bifs/memory_decoder.c.
- CVE-2023-41071HIGHCVSS 7.8EG 7.82023-09-27
A use-after-free issue was addressed with improved memory management. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Ventura 13.6. An app may be able to execute arbitrary code with kernel privileges.
- CVE-2023-41093LOWCVSS 3.1EG 3.12024-07-12
Use After Free vulnerability in Silicon Labs Bluetooth SDK on 32 bit, ARM may allow an attacker with precise timing capabilities to intercept a small number of packets intended for a recipient that has left the network.This issue affects S…
- CVE-2023-4132MEDIUMCVSS 5.5EG 5.52023-08-03
A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user to crash the system, causing a denial o…
- CVE-2023-4133MEDIUMCVSS 5.5EG 5.52023-08-03
A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flower_stats_timer from the work queue. This flaw allows a local user to …
- CVE-2023-4134MEDIUMCVSS 5.5EG 5.52024-11-14
A use-after-free vulnerability was found in the cyttsp4_core driver in the Linux kernel. This issue occurs in the device cleanup routine due to a possible rearming of the watchdog_timer from the workqueue. This could allow a local user to …
- CVE-2023-41375HIGHCVSS 7.8EG 7.82023-09-20
Use after free vulnerability exists in Kostac PLC Programming Software Version 1.6.11.0. Arbitrary code may be executed by having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.…
- CVE-2023-4147HIGHCVSS 7.8EG 7.82023-08-07
A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the system.
- CVE-2023-41675MEDIUMCVSS 5.3EG 5.32023-10-10
A use after free vulnerability [CWE-416] in FortiOS version 7.2.0 through 7.2.4 and version 7.0.0 through 7.0.10 and FortiProxy version 7.2.0 through 7.2.2 and version 7.0.0 through 7.0.8 may allow an unauthenticated remote attacker to cra…
- CVE-2023-41765HIGHCVSS 8.1EG 8.12023-10-10
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
- CVE-2023-41767HIGHCVSS 8.1EG 8.12023-10-10
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
- CVE-2023-41768HIGHCVSS 8.1EG 8.12023-10-10
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
- CVE-2023-41769HIGHCVSS 8.1EG 8.12023-10-10
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
- CVE-2023-41770HIGHCVSS 8.1EG 8.12023-10-10
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
- CVE-2023-41771HIGHCVSS 8.1EG 8.12023-10-10
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
- CVE-2023-41773HIGHCVSS 8.1EG 8.12023-10-10
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
- CVE-2023-41774HIGHCVSS 8.1EG 8.12023-10-10
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
- CVE-2023-41974HIGHCVSS 7.8EG 9.0⚠ KEV2024-01-10
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, iOS 15.8.7 and iPadOS 15.8.7. An app may be able to execute arbitrary code with kernel privileges.
- CVE-2023-41976HIGHCVSS 8.8EG 8.82023-10-25
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17.1 and iPadOS 17.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Sonoma 14.1, Safari 17.1, tvOS 17.1. Processing web content may lead t…
- CVE-2023-41995HIGHCVSS 7.8EG 7.82023-09-27
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to execute arbitrary code with kernel privileges.
- CVE-2023-42040HIGHCVSS 7.8EG 7.82024-05-03
PDF-XChange Editor mailForm Use-After-Free Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vul…
- CVE-2023-42041HIGHCVSS 7.8EG 7.82024-05-03
PDF-XChange Editor Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit…
- CVE-2023-42050MEDIUMCVSS 5.5EG 3.32024-05-03
PDF-XChange Editor EMF File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is requ…
- CVE-2023-42059HIGHCVSS 7.8EG 7.82024-05-03
PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to e…
- CVE-2023-4206HIGHCVSS 7.8EG 7.82023-09-06
A use-after-free vulnerability in the Linux kernel's net/sched: cls_route component can be exploited to achieve local privilege escalation. When route4_change() is called on an existing filter, the whole tcf_result struct is always copied…
- CVE-2023-4207HIGHCVSS 7.8EG 7.82023-09-06
A use-after-free vulnerability in the Linux kernel's net/sched: cls_fw component can be exploited to achieve local privilege escalation. When fw_change() is called on an existing filter, the whole tcf_result struct is always copied into t…
- CVE-2023-42075HIGHCVSS 7.8EG 7.82024-05-03
PDF-XChange Editor JPG File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to e…
Map vulnerabilities like CWE-416 to your infrastructure
EchelonGraph correlates every CVE — across CWE-416 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →