CWE-416— Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.— MITRE CWE catalog
7,393 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-416page 88 of 148
- CVE-2024-21407HIGHCVSS 8.1EG 8.12024-03-12
Windows Hyper-V Remote Code Execution Vulnerability
- CVE-2024-21409HIGHCVSS 7.3EG 7.32024-04-09
.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
- CVE-2024-21426HIGHCVSS 7.8EG 7.82024-03-12
Microsoft SharePoint Server Remote Code Execution Vulnerability
- CVE-2024-21437HIGHCVSS 7.8EG 7.82024-03-12
Windows Graphics Component Elevation of Privilege Vulnerability
- CVE-2024-21439HIGHCVSS 7.0EG 7.02024-03-12
Windows Telephony Server Elevation of Privilege Vulnerability
- CVE-2024-21443HIGHCVSS 7.3EG 7.32024-03-12
Windows Kernel Elevation of Privilege Vulnerability
- CVE-2024-21468HIGHCVSS 8.4EG 8.42024-04-01
Memory corruption when there is failed unmap operation in GPU.
- CVE-2024-21471HIGHCVSS 8.4EG 8.42024-05-06
Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.
- CVE-2024-21472HIGHCVSS 8.4EG 8.42024-04-01
Memory corruption in Kernel while handling GPU operations.
- CVE-2024-2176HIGHCVSS 8.8EG 8.82024-03-06
Use after free in FedCM in Google Chrome prior to 122.0.6261.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
- CVE-2024-21803LOWCVSS 3.5EG 3.52024-01-30
Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (bluetooth modules) allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/…
- CVE-2024-21860HIGHCVSS 8.2EG 8.22024-02-02
in OpenHarmony v4.0.0 and prior versions allow an adjacent attacker arbitrary code execution in any apps through use after free.
- CVE-2024-21918HIGHCVSS 7.8EG 7.82024-03-26
A memory buffer vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code to the software by corrupting the memory and triggering an access violation. Once inside,…
- CVE-2024-22088CRITICALCVSS 9.8EG 9.82024-01-05
Lotos WebServer through 0.1.1 (commit 3eb36cc) has a use-after-free in buffer_avail() at buffer.h via a long URI, because realloc is mishandled.
- CVE-2024-22098MEDIUMCVSS 6.5EG 6.52024-04-02
in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through use after free.
- CVE-2024-22180LOWCVSS 3.3EG 3.32024-04-02
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through use after free.
- CVE-2024-22252CRITICALCVSS 9.3EG 9.32024-03-05
VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual mach…
- CVE-2024-22253CRITICALCVSS 9.3EG 9.32024-03-05
VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual mach…
- CVE-2024-22267CRITICALCVSS 9.3EG 9.32024-05-14
VMware Workstation and Fusion contain a use-after-free vulnerability in the vbluetooth device. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX…
- CVE-2024-22914MEDIUMCVSS 5.5EG 5.52024-01-19
A heap-use-after-free was found in SWFTools v0.9.2, in the function input at lex.swf5.c:2620. It allows an attacker to cause denial of service.
- CVE-2024-22915HIGHCVSS 7.8EG 7.82024-01-19
A heap-use-after-free was found in SWFTools v0.9.2, in the function swf_DeleteTag at rfxswf.c:1193. It allows an attacker to cause code execution.
- CVE-2024-22920HIGHCVSS 7.8EG 7.82024-01-19
swftools 0.9.2 was discovered to contain a heap-use-after-free via the function bufferWriteData in swftools/lib/action/compile.c.
- CVE-2024-22956HIGHCVSS 7.8EG 7.82024-01-19
swftools 0.9.2 was discovered to contain a heap-use-after-free vulnerability via the function removeFromTo at swftools/src/swfc.c:838
- CVE-2024-2312MEDIUMCVSS 6.7EG 6.72024-04-05
GRUB2 does not call the module fini functions on exit, leading to Debian/Ubuntu's peimage GRUB2 module leaving UEFI system table hooks after exit. This lead to a use-after-free condition, and could possibly lead to secure boot bypass.
- CVE-2024-23134HIGHCVSS 7.8EG 7.52024-02-22
A maliciously crafted IGS file in tbb.dll when parsed through Autodesk AutoCAD can be used in user-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.
- CVE-2024-23135HIGHCVSS 7.8EG 7.52024-02-22
A maliciously crafted SLDPRT file in ASMkern228A.dll when parsed through Autodesk applications can be used in user-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current …
- CVE-2024-23142HIGHCVSS 7.8EG 8.82024-06-25
A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll, rose_x64_vc15.dll and libodxdll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerab…
- CVE-2024-23158HIGHCVSS 7.8EG 4.22024-06-25
A maliciously crafted IGES file, when parsed in ASMImport229A.dll through Autodesk applications, can be used to cause a use-after-free vulnerability. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary c…
- CVE-2024-23300HIGHCVSS 7.8EG 7.82024-03-12
A use-after-free issue was addressed with improved memory management. This issue is fixed in GarageBand 10.4.11. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.
- CVE-2024-23310CRITICALCVSS 9.8EG 9.82024-02-20
A use-after-free vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .famos file can lead to arbitrary code execution. An attacker can provide a…
- CVE-2024-23322HIGHCVSS 7.5EG 7.52024-02-09
Envoy is a high-performance edge/middle/service proxy. Envoy will crash when certain timeouts happen within the same interval. The crash occurs when the following are true: 1. hedge_on_per_try_timeout is enabled, 2. per_try_idle_timeout is…
- CVE-2024-23354HIGHCVSS 8.4EG 8.42024-05-06
Memory corruption when the IOCTL call is interrupted by a signal.
- CVE-2024-23365HIGHCVSS 8.4EG 8.42024-09-02
Memory corruption while releasing shared resources in MinkSocket listener thread.
- CVE-2024-23370MEDIUMCVSS 6.7EG 6.72024-10-07
Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same.
- CVE-2024-23373HIGHCVSS 8.4EG 8.42024-07-01
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
- CVE-2024-23376MEDIUMCVSS 6.7EG 6.72024-10-07
Memory corruption while sending the persist buffer command packet from the user-space to the kernel space through the IOCTL call.
- CVE-2024-23380HIGHCVSS 8.4EG 8.42024-07-01
Memory corruption while handling user packets during VBO bind operation.
- CVE-2024-23381HIGHCVSS 8.4EG 8.42024-08-05
Memory corruption when memory mapped in a VBO is not unmapped by the GPU SMMU.
- CVE-2024-23382HIGHCVSS 8.4EG 8.42024-08-05
Memory corruption while processing graphics kernel driver request to create DMA fence.
- CVE-2024-23383HIGHCVSS 8.4EG 8.42024-08-05
Memory corruption when kernel driver attempts to trigger hardware fences.
- CVE-2024-23384HIGHCVSS 8.4EG 8.42024-08-05
Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker.
- CVE-2024-23658MEDIUMCVSS 4.4EG 4.42024-04-08
In camera driver, there is a possible use after free due to a logic error. This could lead to local denial of service with System execution privileges needed
- CVE-2024-23696HIGHCVSS 7.8EG 8.42024-07-09
In RGXCreateZSBufferKM of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is n…
- CVE-2024-23697HIGHCVSS 7.8EG 5.32024-07-09
In RGXCreateHWRTData_aux of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is…
- CVE-2024-23716HIGHCVSS 7.0EG 7.42024-09-11
In DevmemIntPFNotify of devicemem_server.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not …
- CVE-2024-23807CRITICALCVSS 9.8EG 8.12024-02-29
The Apache Xerces C++ XML parser on versions 3.0.0 before 3.2.5 contains a use-after-free error triggered during the scanning of external DTDs. Users are recommended to upgrade to version 3.2.5 which fixes the issue, or mitigate the issue…
- CVE-2024-23839HIGHCVSS 7.1EG 7.12024-02-26
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.3, specially crafted traffic can cause a heap use after free if the ruleset uses the http.request_header or…
- CVE-2024-23848MEDIUMCVSS 5.5EG 5.52024-01-23
In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c.
- CVE-2024-23923HIGHCVSS 8.8EG 8.82024-09-28
Alpine Halo9 prh_l2_sar_data_ind Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine Halo9 devices. Authentication is not re…
- CVE-2024-2400HIGHCVSS 8.8EG 8.82024-03-13
Use after free in Performance Manager in Google Chrome prior to 122.0.6261.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Map vulnerabilities like CWE-416 to your infrastructure
EchelonGraph correlates every CVE — across CWE-416 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →