CWE-416: Use After Free

This CVE describes a use-after-free vulnerability in the Linux kernel's ep93xx clock driver. An attacker could potentially exploit this to cause kerne...

This CVE describes a use-after-free vulnerability in the Linux kernel's davinci vpif media driver. When the driver is unbound (removed), it fails to p...

This CVE involves a use-after-free vulnerability in the Linux kernel's BFQ I/O scheduler that could lead to system crashes or potential privilege esca...

This is a use-after-free vulnerability in the Linux kernel's UBI (Unsorted Block Images) subsystem caused by a race condition between device control a...

A use-after-free vulnerability in the Linux kernel's KVM hypervisor TDP MMU component allows attackers to potentially crash the host system or execute...

A use-after-free vulnerability in X.Org and Xwayland allows attackers to potentially execute arbitrary code or cause denial of service when a device i...

A use-after-free vulnerability in X.Org and Xwayland allows attackers to potentially execute arbitrary code or cause denial of service. This affects s...

A use-after-free vulnerability in X.Org and Xwayland allows attackers to potentially crash the X server or execute arbitrary code by freeing the root ...

This is a use-after-free vulnerability in the Linux kernel's netem network emulation subsystem. It allows attackers with local access to potentially c...

This Linux kernel vulnerability allows a local attacker to trigger a use-after-free condition in the traffic control subsystem by manipulating qdisc c...

A Linux kernel vulnerability in the hrtimers subsystem allows improper handling of CPU state during hotplug operations. This can lead to system instab...

This vulnerability allows remote code execution through specially crafted Excel files. Attackers could exploit this to execute arbitrary code on a vic...

This vulnerability allows remote code execution through specially crafted Microsoft Office documents. Attackers can exploit this by tricking users int...

This vulnerability allows remote attackers to execute arbitrary code on affected systems by tricking users into opening a specially crafted Excel file...

This is a Windows kernel privilege escalation vulnerability in the Win32 subsystem that allows attackers to gain SYSTEM-level privileges on affected s...

Adobe Illustrator versions 29.1, 28.7.3 and earlier contain a use-after-free vulnerability that could allow attackers to execute arbitrary code when a...

A use-after-free vulnerability in the Linux kernel's zswap memory compression subsystem allows local attackers to potentially crash the system or exec...

A Use After Free vulnerability in Arm's Valhall and 5th Gen GPU kernel drivers allows local non-privileged users to access freed memory through improp...

This CVE describes a use-after-free vulnerability in the Linux kernel's zram compressed memory driver. If zram device initialization fails, the kernel...

This vulnerability allows non-privileged software to make improper GPU system calls that trigger use-after-free kernel exceptions. It affects systems ...

This vulnerability allows non-privileged software to make improper GPU system calls that trigger use-after-free kernel exceptions. It affects systems ...

This vulnerability allows non-privileged software to make improper GPU system calls that trigger use-after-free kernel exceptions. This affects system...

A use-after-free vulnerability in the Linux kernel's MediaTek DRM driver allows local attackers to cause kernel memory corruption during system shutdo...

A use-after-free vulnerability in the Linux kernel's ipvlan network driver allows attackers to potentially crash the kernel or execute arbitrary code....

This is a use-after-free (UAF) vulnerability in the Linux kernel's BFQ I/O scheduler. It allows attackers with local access to potentially escalate pr...

A use-after-free vulnerability in the Linux kernel's RDMA over Converged Ethernet (RXE) driver allows attackers to potentially crash the kernel or exe...

A use-after-free vulnerability in the Linux kernel's mlx5e network driver allows attackers to potentially crash the kernel or execute arbitrary code. ...

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of Microsoft Access. Attackers could explo...

This vulnerability in Microsoft Brokering File System allows attackers to escalate privileges on affected Windows systems. An authenticated attacker c...

This vulnerability in Microsoft Office Visio allows attackers to execute arbitrary code by tricking users into opening specially crafted files. It aff...

This vulnerability allows an authenticated attacker with local access to a Windows Hyper-V host to escalate privileges by exploiting a use-after-free ...

This vulnerability allows an authenticated attacker with guest VM access to execute arbitrary code with SYSTEM privileges on the Hyper-V host. It affe...

This is an elevation of privilege vulnerability in Microsoft's Brokering File System component. It allows authenticated attackers to gain SYSTEM-level...

This is a use-after-free vulnerability in Microsoft's Desktop Window Manager (DWM) Core Library that allows local attackers to execute arbitrary code ...

This vulnerability in Microsoft COM for Windows allows attackers to gain elevated privileges on affected systems. It affects Windows systems where an ...

A use-after-free vulnerability in the Linux kernel's s390 CPU Measurement Facility (CPUMF) sampling component allows reading from already freed memory...

This is a use-after-free vulnerability in the Linux kernel's DisplayPort Multi-Stream Transport (DP-MST) subsystem. It allows a local attacker to caus...

This CVE describes a use-after-free vulnerability in the Linux kernel's mpc52xx SPI driver. When removing the driver module, the system fails to prope...

This Linux kernel vulnerability involves a use-after-free condition in the block layer's hardware context (hctx) management during CPU hotplug operati...

This CVE describes a use-after-free vulnerability in the Linux kernel's KUnit testing framework. When alloc_string_stream() fails during test suite in...

CVE-2023-35685 is a use-after-free vulnerability in the Android kernel's device memory management that allows local attackers to escalate privileges w...

A use-after-free vulnerability in the Linux kernel's ublk subsystem allows attackers to potentially crash the kernel or execute arbitrary code with ke...

A use-after-free vulnerability in the Linux kernel's PowerPC pSeries VAS (Virtual Accelerator Switchboard) subsystem allows local attackers to cause m...

A use-after-free vulnerability in the Linux kernel's Btrfs filesystem occurs when Copy-On-Write (COW) operations on tree blocks are performed with tra...

This CVE describes a use-after-free vulnerability in Qualcomm components where memory corruption can occur when process-specific maps are improperly h...

This CVE describes a use-after-free vulnerability in the Linux kernel's brd (block RAM disk) module that occurs during module initialization failure. ...

A Linux kernel vulnerability in powerpc/mm/fault allows improper handling of page faults when reading /proc/kcore, potentially causing false KFENCE er...

This vulnerability allows non-privileged users to trigger use-after-free kernel exceptions through improper GPU system calls, potentially leading to p...

This CVE describes a use-after-free vulnerability in the Linux kernel's BPF subsystem where uprobes use tasks-trace-RCU protection while non-sleepable...

This CVE describes a use-after-free vulnerability in the Linux kernel's Xe graphics driver register save/restore functionality. When the kernel reallo...