CWE-415: CWE-415

A double-free vulnerability in the Linux kernel's ext4 filesystem can lead to kernel panic and system crashes. This occurs when moving extents with ov...

This vulnerability is a double-free memory corruption bug in the iwlwifi driver in the Linux kernel. It allows attackers to potentially crash the syst...

This CVE describes a double-free vulnerability in the Linux kernel's ljca USB driver. When auxiliary_device_add() fails, the driver's error handling p...

This CVE describes a double-free vulnerability in the Linux kernel's io_uring subsystem. It allows attackers with local access to potentially cause me...

This CVE describes a double-free vulnerability in the Linux kernel's device-mapper request-based (dm-rq) subsystem. When loading a device-mapper table...

This CVE describes a double-free memory corruption vulnerability in Android's framework/base component that allows local privilege escalation without ...

A double free vulnerability in Kostac PLC Programming Software allows arbitrary code execution when users open specially crafted project files. This a...

This vulnerability in Microsoft Office allows attackers to execute arbitrary code on a victim's system by tricking them into opening a specially craft...

CVE-2023-33161 is a double-free vulnerability (CWE-415) in Microsoft Excel that allows remote code execution when a user opens a specially crafted mal...

This vulnerability allows attackers to execute arbitrary code on a victim's system by tricking them into opening a specially crafted Excel file. It af...

This CVE describes a double-free vulnerability in the Adreno GPU driver for Android kernels, which could allow local attackers to corrupt memory and e...

This vulnerability is a use-after-free and double-free flaw in the Linux kernel's Bluetooth subsystem that can lead to privilege escalation. Attackers...

This CVE describes a double-free vulnerability in Android's keystore component that allows local privilege escalation. An unprivileged process can cor...

CVE-2022-40683 is a double-free vulnerability in Fortinet FortiWeb web application firewalls that could allow attackers to execute arbitrary code or c...

This CVE describes a double-free vulnerability in Android's label_backends_android.c that could allow local privilege escalation during servicemanager...

CVE-2021-42613 is a double-free vulnerability in Halibut's cleanup_index function that allows attackers to cause denial of service or potentially exec...

This vulnerability allows attackers to execute arbitrary code by exploiting a double-free memory corruption flaw in the CGM_NIST_Loader.dll library wh...

CVE-2022-29156 is a double-free vulnerability in the Linux kernel's RDMA Transport (RTRS) client driver that could allow local attackers to cause a ke...

CVE-2022-27416 is a double-free vulnerability in Tcpreplay v4.4.1 that allows attackers to execute arbitrary code or cause denial of service by exploi...

This vulnerability is a double-free memory corruption flaw in the EMS CAN-USB driver in the Linux kernel. It allows local attackers to potentially cra...

Adobe Bridge versions 11.1.1 and earlier contain a double free vulnerability when processing malicious DCM files. This could allow attackers to execut...

This is a double-free vulnerability in Bentley MicroStation CONNECT's JT file parser that allows remote code execution. Attackers can exploit it by tr...

CVE-2021-46625 is a double-free vulnerability in Bentley View's JT file parser that allows remote code execution when a user opens a malicious JT file...

CVE-2021-40574 is a double-free vulnerability in Gpac's MP4Box binary that allows attackers to cause denial of service, execute arbitrary code, or esc...

A double-free vulnerability in Gpac's MP4Box allows attackers to cause denial of service or potentially execute arbitrary code. This affects systems r...

This CVE describes a double free vulnerability in Apple operating systems that allows an application to execute arbitrary code with kernel privileges....

This CVE describes a double free vulnerability in HarmonyOS that allows local attackers to gain root privileges. The vulnerability affects Huawei devi...

This vulnerability in Foxit Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files containing spe...

This CVE describes a double-free vulnerability in Android's DRM plugin that could allow local privilege escalation. Attackers could exploit this to ga...

A double-free vulnerability in FreeBSD's accept filter implementation allows attackers to potentially execute arbitrary code or cause denial of servic...

CVE-2019-19005 is a double-free vulnerability in autotrace 0.31.1 that allows attackers to cause memory corruption by processing a malformed bitmap im...

MuPDF versions 1.23.0 through 1.27.0 contain a double-free vulnerability in the barcode decoding functionality. When processing specially crafted inpu...

A double free vulnerability in Juniper's flow processing daemon (flowd) allows unauthenticated attackers to cause denial-of-service by sending a speci...

CVE-2025-53948 is a denial-of-service vulnerability in Sante PACS Server where a remote attacker can crash the main thread by sending a specially craf...

A double-free vulnerability in Thunderbird's WebRTC encoder initialization could cause memory corruption and potentially exploitable crashes. This aff...

A double-free vulnerability in Juniper Junos OS and Junos OS Evolved routing process daemon (rpd) allows attackers to cause denial of service by sendi...

A double-free vulnerability in libdwarf allows memory corruption when processing specially crafted DWARF debugging information files. This could lead ...

CVE-2023-38434 is a double-free vulnerability in xHTTP's close_connection function that can be triggered via malformed HTTP request methods. This allo...

A double-free vulnerability in OpenSSL's PEM parsing functions allows attackers to cause denial of service through specially crafted PEM files. The vu...

CVE-2021-41688 is a double-free vulnerability in DCMTK's dcmqrdb program that allows attackers to cause denial of service by sending specific requests...

CVE-2022-31291 is a double-free vulnerability in dlt-daemon's configuration file parser that allows attackers to cause memory corruption via crafted T...

CVE-2021-4091 is a double-free vulnerability in 389 Directory Server's handling of virtual attributes during persistent searches. An attacker can send...

CVE-2021-40038 is a double free vulnerability in the AOD (Always On Display) module of Huawei smartphones running HarmonyOS. This memory corruption fl...

This vulnerability in the algorithmica Rust crate allows double-free memory corruption in the merge_sort::merge() function. Attackers can potentially ...

A double free vulnerability in Huawei CloudEngine switches allows attackers to cause memory corruption by freeing the same pointer twice. This can lea...

This vulnerability in the endian_trait Rust crate allows double-free memory corruption when a user-provided Endian implementation panics. This affects...

This vulnerability in the arenavec Rust crate allows double-free memory corruption when a panic occurs during object destruction. It affects Rust appl...

This vulnerability in the insert_many Rust crate allows double-free memory corruption when the .next() method panics, potentially leading to use-after...

This vulnerability in the Rust slice-deque crate allows a double free/double drop condition when a panic occurs in a predicate function during SliceDe...

This vulnerability allows an authenticated attacker to exploit the Windows Resilient File System (ReFS) Deduplication Service to gain SYSTEM privilege...