CWE-416: Use After Free

This is a use-after-free vulnerability in the Linux kernel's network namespace subsystem where a freed network structure can be accessed during cleanu...

This CVE describes a use-after-free vulnerability in the Linux kernel's SMC (Shared Memory Communications) networking subsystem. It allows attackers t...

A use-after-free vulnerability in the Linux kernel's TIPC (Transparent Inter-Process Communication) subsystem allows attackers to potentially crash th...

This is a use-after-free vulnerability in the Linux kernel's SCSI generic (sg) driver that allows local attackers to potentially crash the system or e...

A memory corruption vulnerability in the Linux kernel's nilfs2 filesystem driver allows potential out-of-bounds memory access or use-after-free condit...

A use-after-free vulnerability in the Linux kernel's af_packet subsystem allows attackers to potentially execute arbitrary code or cause denial of ser...

This CVE describes a use-after-free vulnerability in the Linux kernel's IPv6 socket creation function. When inet6_create() fails during socket allocat...

A use-after-free vulnerability in the Linux kernel's IEEE 802.15.4 wireless networking subsystem allows attackers to potentially crash the kernel or e...

This CVE describes a use-after-free vulnerability in the Linux kernel's Bluetooth RFCOMM implementation. When rfcomm_dlc_alloc() fails during socket a...

This CVE describes a use-after-free vulnerability in the Linux kernel's Btrfs filesystem ref-verify feature. When an invalid reference action occurs d...

This is a use-after-free vulnerability in the Linux kernel's binder IPC subsystem. It allows local attackers to potentially crash the system or execut...

This CVE describes a use-after-free vulnerability in the Linux kernel's NFS server (nfsd) where improper reference counting during cache operations co...

This CVE describes a use-after-free vulnerability in the Linux kernel's PCI endpoint controller subsystem. When destroying a PCI endpoint controller, ...

This CVE describes a use-after-free vulnerability in the Linux kernel's AMD GPU driver (drm/amdgpu). When the driver attempts to flush a GPU scheduler...

This Linux kernel vulnerability in the ZynqMP KMS driver allows use-after-free conditions when userspace accesses a DRM device during removal. Attacke...

A use-after-free vulnerability in the Linux kernel's ath12k WiFi driver allows attackers to potentially crash the system or execute arbitrary code whe...

This CVE describes a use-after-free vulnerability in the Linux kernel's Bluetooth subsystem. When a Bluetooth device is being unregistered, a race con...

This CVE describes a use-after-free vulnerability in the Linux kernel's ALSA 6fire USB audio driver. An attacker could potentially exploit this to cau...

This CVE describes a use-after-free vulnerability in the Linux kernel's bfa SCSI driver. When bfad_im_module_init() fails during module initialization...

A use-after-free vulnerability in the Linux kernel's NFS server (nfsd) allows local attackers to potentially crash the system or execute arbitrary cod...

This CVE describes a use-after-free vulnerability in the Linux kernel's F2FS filesystem driver. Concurrent calls to f2fs_stop_gc_thread() during files...

This CVE describes a use-after-free vulnerability in the Linux kernel's TCP implementation. When a TCP connection request times out during migration, ...

This is a use-after-free vulnerability in the Linux kernel's Bluetooth management subsystem that allows reading freed memory. Attackers could potentia...

This is a use-after-free vulnerability in the Linux kernel's SMB client implementation. When open_cached_dir() encounters an error while parsing a lea...

A race condition in the Linux kernel's SMB client can cause a use-after-free vulnerability in the signing key during SMB2.1+ sign mounts. This allows ...

This CVE describes a use-after-free vulnerability in the Linux kernel's BFQ I/O scheduler. The vulnerability allows an attacker to cause memory corrup...

This CVE describes a use-after-free vulnerability in the Linux kernel's block layer that occurs when flush requests are not properly cleared from tags...

This CVE describes a use-after-free vulnerability in the Linux kernel's NFSv4.0 client implementation during asynchronous file open operations. When t...

A use-after-free vulnerability in the Linux kernel's SH architecture interrupt controller allows attackers to potentially crash the system or execute ...

This is a use-after-free vulnerability in the Linux kernel's sunrpc module affecting TCP sockets used by NFS. It allows attackers with local access to...

A use-after-free vulnerability in Rockwell Automation Arena allows arbitrary code execution when a user opens a malicious DOE file. This affects legit...

CVE-2022-44518 is a use-after-free vulnerability in Adobe Acrobat Reader DC that could allow an attacker to execute arbitrary code on a victim's syste...

CVE-2022-44520 is a use-after-free vulnerability in Adobe Acrobat Reader DC that could allow an attacker to execute arbitrary code on a victim's syste...

This CVE describes a use-after-free vulnerability in Adobe Acrobat Reader DC that could allow arbitrary code execution when a user opens a malicious P...

CVE-2024-47040 is a use-after-free vulnerability in Android that allows local privilege escalation without user interaction. Attackers can exploit thi...

This vulnerability allows remote code execution through Microsoft Access when a user opens a specially crafted Access file. It affects users who open ...

This vulnerability allows attackers to execute arbitrary code remotely through Input Method Editor (IME) components. It affects systems with vulnerabl...

This vulnerability allows an authenticated attacker to exploit a use-after-free flaw in the Windows kernel-mode driver to gain SYSTEM privileges. It a...

Adobe Animate versions 23.0.8, 24.0.5 and earlier contain a use-after-free vulnerability that could allow arbitrary code execution when a user opens a...

Adobe Photoshop Desktop versions 26.0 and earlier contain a Use After Free vulnerability that could allow an attacker to execute arbitrary code on a v...

A use-after-free vulnerability in Adobe Acrobat Reader allows arbitrary code execution when a user opens a malicious PDF file. This affects multiple v...

This Linux kernel vulnerability involves a use-after-free (UAF) condition in the fsnotify subsystem due to incorrect ordering of operations when handl...

A use-after-free vulnerability in Rockwell Automation Arena allows arbitrary code execution when a user opens a malicious DOE file. This affects legit...

This CVE describes a use-after-free vulnerability in the Linux kernel's SCTP IPv6 implementation. The sctp_v6_available() function accesses network de...

This CVE addresses a use-after-free vulnerability in the Linux kernel's hv_sock module where vsk->trans pointer may not be properly initialized to NUL...

This is a use-after-free vulnerability in the Linux kernel's CAN (Controller Area Network) subsystem. It allows local attackers to read freed kernel m...

CVE-2018-11816 is a use-after-free vulnerability in Android's MediaServer component that allows attackers to execute arbitrary code with elevated priv...

This CVE describes a use-after-free vulnerability in Foxit PDF Reader's annotation handling that allows information disclosure. Attackers can exploit ...

This is a use-after-free vulnerability in Foxit PDF Reader's annotation handling that allows remote attackers to execute arbitrary code when users ope...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious SKP files in Trimble SketchUp. Attackers...