CWE-416: Use After Free

A use-after-free vulnerability in Autodesk Navisworks allows malicious SKP files to trigger memory corruption, potentially leading to arbitrary code e...

CVE-2023-28287 is a use-after-free vulnerability in Microsoft Publisher that allows remote code execution when a user opens a specially crafted Publis...

CVE-2023-34795 is a use-after-free vulnerability in xlsxio library versions 0.1.2 to 0.2.34 where the xlsxioread_sheetlist_close() function frees an u...

CVE-2023-29356 is a use-after-free vulnerability in Microsoft ODBC Driver for SQL Server that allows remote code execution. Attackers can exploit this...

Adobe Animate has a use-after-free vulnerability that allows arbitrary code execution when a user opens a malicious file. Attackers can exploit this t...

This CVE describes a use-after-free vulnerability in Android's cdm_engine.cpp that allows local privilege escalation without user interaction. Attacke...

CVE-2023-29365 is a use-after-free vulnerability in Windows Media components that allows remote code execution. An attacker could exploit this by tric...

A use-after-free vulnerability in the Linux kernel's Btrfs filesystem allows local attackers to potentially crash the system or execute arbitrary code...

CVE-2022-29919 is a use-after-free vulnerability in Intel VROC (Virtual RAID on CPU) software that allows authenticated local users to potentially esc...

CVE-2023-24953 is a use-after-free vulnerability in Microsoft Excel that allows remote code execution when a user opens a specially crafted malicious ...

CVE-2023-32233 is a use-after-free vulnerability in the Linux kernel's Netfilter nf_tables subsystem that allows unprivileged local users to perform a...

This CVE describes a use-after-free vulnerability in Apple operating systems that allows an app to execute arbitrary code with kernel privileges. It a...

This CVE describes a use-after-free memory corruption vulnerability in Qualcomm's Inter-Processor Communication (IPC) subsystem. Attackers could explo...

A use-after-free vulnerability in the Linux kernel's Performance Events (perf) subsystem allows local attackers to escalate privileges from an unprivi...

CVE-2023-26392 is a use-after-free vulnerability in Adobe Substance 3D Stager that allows arbitrary code execution when a user opens a malicious file....

Adobe Acrobat Reader versions 23.001.20093 and earlier, and 20.005.30441 and earlier, contain a use-after-free vulnerability that could allow an attac...

This CVE describes a use-after-free vulnerability in Adobe Acrobat Reader that could allow attackers to execute arbitrary code when a user opens a mal...

CVE-2023-26417 is a use-after-free vulnerability in Adobe Acrobat Reader that allows arbitrary code execution when a user opens a malicious PDF file. ...

CVE-2023-1829 is a use-after-free vulnerability in the Linux kernel's traffic control index filter (tcindex) that allows local attackers to escalate p...

CVE-2023-28285 is a use-after-free vulnerability in Microsoft Office that allows remote code execution when a user opens a specially crafted malicious...

A use-after-free vulnerability in the Linux kernel's Xircom 16-bit PCMCIA Ethernet driver allows local users to crash the system or potentially escala...

CVE-2022-43649 is a use-after-free vulnerability in Foxit PDF Reader that allows remote code execution when users open malicious PDF files or visit ma...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files containing specially crafted U...

This vulnerability in Foxit PDF Reader allows remote attackers to disclose sensitive information by exploiting a flaw in U3D file parsing. Attackers c...

This vulnerability in Foxit PDF Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files or visitin...

This vulnerability in Foxit PDF Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files containing...

This vulnerability in Foxit PDF Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files containing...

This vulnerability in Foxit PDF Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files or visitin...

CVE-2022-37374 is a use-after-free vulnerability in PDF-XChange Editor's PNG file parser that allows remote code execution. Attackers can exploit this...

This is a use-after-free vulnerability in Foxit PDF Reader's AFSpecial_KeystrokeEx method that allows remote attackers to execute arbitrary code. Atta...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious SKP files in Bentley View. Attackers can...

CVE-2022-28310 is a use-after-free vulnerability in Bentley MicroStation CONNECT that allows remote code execution when a user opens a malicious SKP f...

Adobe Dimension versions 3.4.7 and earlier contain a use-after-free vulnerability that could allow arbitrary code execution when a user opens a malici...

CVE-2023-25899 is a use-after-free vulnerability in Adobe Dimension that could allow arbitrary code execution when a user opens a malicious file. This...

Adobe Photoshop versions 23.5.3 and earlier, and 24.1.1 and earlier, contain a use-after-free vulnerability that could allow arbitrary code execution ...

CVE-2023-25871 is a use-after-free vulnerability in Adobe Substance 3D Stager that could allow arbitrary code execution when a user opens a malicious ...

This CVE-2023-0494 vulnerability in X.Org allows attackers to exploit a dangling pointer in DeepCopyPointerClasses via ProcXkbSetDeviceInfo() and Proc...

A use-after-free vulnerability in the Linux kernel's Ext4 file system when used with overlay FS allows a local attacker to crash the system or potenti...

This CVE describes a use-after-free vulnerability in the Linux kernel's RTL8712 wireless driver that allows local attackers to cause denial of service...

A use-after-free vulnerability in the Linux kernel's traffic control index filter (tcindex) allows local attackers to escalate privileges to root. The...

This CVE describes a use-after-free vulnerability in Xen's shadow mode with log-dirty mode enabled. It allows a malicious guest VM to crash the hyperv...

This Windows kernel vulnerability allows an authenticated attacker to execute arbitrary code with elevated SYSTEM privileges by exploiting a use-after...

A use-after-free vulnerability in the Linux kernel's nouveau graphics driver allows a local attacker to trigger a memory overflow via the nvkm_vma_tai...

A use-after-free vulnerability in the Linux kernel's SGI GRU driver allows local attackers to crash the system or potentially escalate privileges. Thi...

A use-after-free vulnerability in Kostac PLC Programming Software (formerly Koyo PLC Programming Software) allows attackers to execute arbitrary code ...

Adobe Premiere Rush versions 2.6 and earlier contain a use-after-free vulnerability that allows arbitrary code execution when a user opens a malicious...

CVE-2023-21688 is a use-after-free vulnerability in the Windows NT kernel that allows local attackers to escalate privileges from a low-privileged use...

A use-after-free vulnerability in Solid Edge CAD software allows attackers to execute arbitrary code by tricking users into opening malicious STP file...

CVE-2021-33453 is a use-after-free vulnerability in lrzip version 0.641 that occurs in the ucompthread() function. This vulnerability could allow atta...

CVE-2022-28679 is a use-after-free vulnerability in Foxit PDF Reader that allows remote attackers to execute arbitrary code. Users who open malicious ...