CWE-416: Use After Free

This vulnerability allows remote attackers to potentially execute arbitrary code or cause denial of service via heap corruption in Chrome's WebRTC imp...

This is a use-after-free vulnerability in Chrome's Blink rendering engine that allows remote attackers to potentially execute arbitrary code or cause ...

This is a use-after-free vulnerability in Chrome's audio component that allows remote attackers to potentially exploit heap corruption. Attackers can ...

This is a use-after-free vulnerability in Chrome's extensions component that allows remote attackers to potentially exploit heap corruption. Attackers...

This is a use-after-free vulnerability in Chrome's WebRTC component that allows remote attackers to potentially exploit heap corruption. Attackers can...

This is a use-after-free vulnerability in Google Chrome's clipboard component that allows remote attackers to potentially exploit heap corruption. Att...

A use-after-free vulnerability in the Linux kernel's Xen PV block backend allows a malicious guest VM to crash the host (dom0) by rapidly connecting a...

This is a use-after-free vulnerability in Mozilla Firefox, Firefox ESR, and Thunderbird that occurs during browser shutdown. Attackers could exploit t...

This vulnerability is a use-after-free condition in Firefox's JavaScript engine that allows remote code execution when exploited. Attackers can craft ...

CVE-2020-9947 is a use-after-free vulnerability in Apple's WebKit browser engine that allows arbitrary code execution when processing malicious web co...

This is a use-after-free vulnerability in Apple's WebKit browser engine that could allow arbitrary code execution when processing malicious web conten...

This CVE describes a use-after-free vulnerability in WebKitGTK that allows remote code execution when a user visits a malicious website. The vulnerabi...

CVE-2021-32781 is a use-after-free vulnerability in Envoy proxy that allows specifically crafted requests to cause denial of service. It affects Envoy...

This is a use-after-free vulnerability in Chrome's IndexedDB component that allows sandbox escape. Attackers can exploit it by convincing users to ins...

This vulnerability is a use-after-free memory corruption flaw in Chrome's DevTools that allows a local attacker to potentially escape the browser's se...

This CVE describes a use-after-free vulnerability in Zoom Workplace Apps that allows authenticated users to escalate privileges through network access...

This CVE describes a use-after-free vulnerability in Microsoft Office that allows an unauthorized attacker to execute arbitrary code on a victim's sys...

This CVE describes a use-after-free vulnerability in Microsoft Office that allows an unauthorized attacker to execute arbitrary code on a victim's sys...

CVE-2025-66627 is a use-after-free vulnerability in Wasmi's linear memory implementation that occurs under specific memory growth conditions. This all...

CVE-2025-22410 is a use-after-free vulnerability in Android's Bluetooth stack that allows local privilege escalation without user interaction. Attacke...

This CVE describes a use-after-free vulnerability in Android's Bluetooth stack that allows local privilege escalation without user interaction. Attack...

A use-after-free vulnerability in Microsoft Office Word allows attackers to execute arbitrary code on affected systems by tricking users into opening ...

A use-after-free vulnerability in Microsoft Office allows attackers to execute arbitrary code on a victim's system by tricking them into opening a mal...

CVE-2025-27128 is a use-after-free vulnerability in OpenHarmony's tcb (Trusted Computing Base) component that allows local attackers to execute arbitr...

This vulnerability is a use-after-free memory corruption flaw in Microsoft Office Word that allows an attacker to execute arbitrary code on a victim's...

A use-after-free vulnerability in Microsoft Office allows attackers to execute arbitrary code on affected systems by tricking users into opening malic...

A use-after-free vulnerability in Microsoft Office allows attackers to execute arbitrary code on affected systems by exploiting memory corruption afte...

This vulnerability is a use-after-free memory corruption flaw in Microsoft Office that allows an attacker to execute arbitrary code on a victim's syst...

CVE-2024-40649 is a use-after-free vulnerability in the Android kernel that allows local privilege escalation without requiring user interaction or ad...

This CVE describes a use-after-free vulnerability in the Android kernel that allows local privilege escalation without requiring user interaction. Att...

This CVE describes a use-after-free vulnerability in Android's TBD component caused by a race condition. It allows local attackers to escalate privile...

This CVE describes a use-after-free vulnerability in Android's TBD component caused by a race condition. It allows local attackers to escalate privile...

This CVE describes a use-after-free vulnerability in the Android kernel's devicemem_server.c component. It allows local attackers to escalate privileg...

This vulnerability allows attackers to execute arbitrary code on a victim's system by tricking them into opening a specially crafted Excel file. It af...

This vulnerability allows memory corruption through specially crafted user packets that trigger page faults in Qualcomm components. Attackers could po...

This vulnerability allows memory corruption when two threads simultaneously map and unmap a single node in Qualcomm components. Successful exploitatio...

CVE-2024-23365 is a use-after-free vulnerability in Qualcomm's MinkSocket component that allows memory corruption when releasing shared resources. Suc...

This CVE describes a use-after-free vulnerability in Qualcomm graphics drivers where a fence object may still be accessed after being released during ...

This vulnerability involves memory corruption when GPU SMMU fails to unmap memory mapped in a Vertex Buffer Object (VBO), potentially allowing attacke...

CVE-2024-23383 is a use-after-free vulnerability in Qualcomm kernel drivers that allows memory corruption when hardware fences are triggered. This cou...

This vulnerability allows memory corruption when IOMMU unmap operations fail, leading to improper release of DMA and anonymous buffers. It affects sys...

This CVE describes a use-after-free vulnerability in the Linux kernel's phylib subsystem. The vulnerability occurs when the kernel attempts to reset a...

A Use-After-Free vulnerability in Samsung Exynos mobile and wearable processors allows attackers to potentially execute arbitrary code or cause system...

This is a use-after-free vulnerability in the Linux kernel's peak_pci CAN bus driver that occurs during module removal. When exploited, it allows loca...

This vulnerability allows memory corruption when an IOCTL call is interrupted by a signal in Qualcomm components, potentially leading to arbitrary cod...

CVE-2024-21468 is a use-after-free vulnerability in Qualcomm GPU drivers where failed memory unmapping operations can lead to memory corruption. This ...

This vulnerability involves memory corruption in the kernel when handling GPU operations, allowing attackers to potentially execute arbitrary code wit...

A use-after-free vulnerability in the Linux kernel's SH architecture push-switch driver allows local attackers to potentially execute arbitrary code o...

This CVE describes a use-after-free vulnerability in Android's BroadcastSystemMessage function that allows remote code execution without user interact...

CVE-2024-25985 is a use-after-free vulnerability in the bigo_unlocked_ioctl function of bigo.c that allows local privilege escalation without requirin...