CWE-416: Use After Free

This vulnerability allows remote code execution via specially crafted JT files in Siemens JT2Go and Teamcenter Visualization software. Attackers can e...

This CVE-2021-28691 vulnerability allows a malicious or buggy Xen paravirtualized network frontend to trigger a use-after-free condition in Linux xen-...

This vulnerability in Android's memory management driver allows local privilege escalation through an out-of-bounds write caused by use-after-free. At...

This vulnerability in Android's memory management driver allows local privilege escalation through memory corruption via use-after-free. Attackers can...

This vulnerability in Android's memory management driver allows local attackers to escalate privileges without user interaction by exploiting a use-af...

This vulnerability allows attackers to execute arbitrary code or cause denial-of-service by exploiting a use-after-free memory corruption flaw in Siem...

This vulnerability in Android's memory management driver allows local privilege escalation through memory corruption via use-after-free. Attackers can...

This CVE describes a use-after-free vulnerability in Qualcomm Snapdragon chipsets when handling DMA buffer imports. Attackers could exploit this to ex...

This is a use-after-free vulnerability in the Linux kernel's io_uring subsystem that allows local attackers to potentially escalate privileges or cras...

This CVE describes a use-after-free vulnerability in the Linux kernel's SCTP (Stream Control Transmission Protocol) implementation. Attackers can pote...

This CVE describes a use-after-free vulnerability in the Linux kernel's InfiniBand subsystem (ucma.c). Attackers with local access can exploit this to...

CVE-2021-3516 is a use-after-free vulnerability in libxml2's xmllint tool that allows attackers to execute arbitrary code or cause denial of service b...

This CVE describes a use-after-free vulnerability in the Linux kernel's Sun keyboard driver (sunkbd). An attacker with local access can potentially ex...

This CVE describes a use-after-free vulnerability in the Linux kernel's NFC LLCP (Logical Link Control Protocol) implementation. An attacker could exp...

This CVE describes a Use After Free vulnerability in NFC sockets in the Linux Kernel that allows local attackers with CAP_NET_RAW capability to escala...

This vulnerability in the Windows Graphics Component allows an attacker to execute arbitrary code with elevated privileges by exploiting a use-after-f...

This is a use-after-free vulnerability in the Windows Graphics Component that allows local attackers to execute arbitrary code with elevated SYSTEM pr...

This vulnerability allows remote code execution through specially crafted Microsoft Office documents. Attackers can exploit it by tricking users into ...

CVE-2021-31177 is a use-after-free vulnerability in Microsoft Office that allows remote code execution when a user opens a specially crafted Office do...

This is a use-after-free vulnerability in Foxit Reader's XFA Forms handling that allows remote code execution. Attackers can exploit it by tricking us...

This vulnerability in Foxit Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files containing spe...

This vulnerability in Foxit Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files or visiting ma...

This is a use-after-free vulnerability in Foxit Reader's XFA Forms handling that allows remote code execution. Attackers can exploit it by tricking us...

This is a use-after-free vulnerability in Foxit Reader's XFA form handling that allows remote code execution when users open malicious PDF files. Atta...

This vulnerability in Foxit Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files. The flaw exis...

This vulnerability in GStreamer's Matroska demuxer allows attackers to trigger use-after-free conditions by processing specially crafted media files. ...

This CVE describes a use-after-free vulnerability in Android's ALooper component that could allow local privilege escalation without user interaction....

This vulnerability in the Linux kernel's KVM subsystem allows out-of-range access to memory slots after deletion, potentially leading to memory corrup...

CVE-2020-9926 is a use-after-free vulnerability in Apple's XML processing that could allow attackers to crash applications or execute arbitrary code b...

This is a use-after-free vulnerability in Apple operating systems that allows an application to execute arbitrary code with kernel privileges. It affe...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files containing specially crafted U...

This CVE describes a use-after-free vulnerability in the Linux kernel's vhost vDPA driver that occurs when re-opening a character device. Attackers co...

A use-after-free vulnerability in Esri ArcGIS products allows arbitrary code execution when parsing malicious files. Unauthenticated attackers can exp...

This CVE describes a use-after-free vulnerability in Qualcomm GPU drivers that allows attackers to execute arbitrary code or cause denial of service. ...

CVE-2021-3403 is a double-free vulnerability in ytnef's TNEFSubjectHandler function that allows remote attackers to cause denial-of-service or potenti...

CVE-2021-24067 is a use-after-free vulnerability in Microsoft Excel that allows remote code execution when a user opens a specially crafted malicious ...

A use-after-free vulnerability in Linux kernel's io_uring subsystem allows local attackers with user privileges to cause denial of service or potentia...

A use-after-free vulnerability in D-Bus allows memory corruption when multiple usernames share the same UID and have policy rules referencing them. Th...

This CVE describes a use-after-free vulnerability in Adobe Acrobat Reader DC that allows arbitrary code execution when a user opens a malicious PDF fi...

CVE-2021-21041 is a use-after-free vulnerability in Adobe Acrobat Reader DC that allows arbitrary code execution when a user opens a malicious PDF fil...

CVE-2020-27280 is a use-after-free vulnerability in ISPSoft versions 3.12 and earlier that allows arbitrary code execution when processing malicious p...

This CVE describes a use-after-free vulnerability in Android's LazyServiceRegistrar component that could allow local privilege escalation. An attacker...

This vulnerability allows local attackers to escalate privileges on Android devices through an out-of-bounds write caused by a use-after-free bug in t...

This vulnerability in the Rust futures-task crate allows use-after-free memory corruption when handling non-static types in waker functions. Attackers...

This vulnerability allows local privilege escalation on Android 11 devices through memory corruption in the Parcel component. Attackers can exploit a ...

This CVE describes a use-after-free vulnerability in the Android kernel's eventpoll subsystem that allows local privilege escalation. An attacker with...

This CVE describes a use-after-free vulnerability in the Linux kernel's MIDI subsystem. An attacker with local access and permissions to issue ioctl c...

This CVE describes a Use After Free vulnerability in the MuPDF library that occurs when processing PDF files with invalid pixmap dimensions. Attackers...

This CVE describes a use-after-free vulnerability in the Linux kernel's tty subsystem that allows attackers to potentially escalate privileges or cras...

CVE-2020-27918 is a use-after-free vulnerability in Apple's WebKit browser engine that allows arbitrary code execution when processing malicious web c...