CWE-416: Use After Free

This vulnerability allows attackers to cause memory corruption by making specific IOCTL calls to unmap DMA buffers in Qualcomm components. It affects ...

This CVE describes a use-after-free vulnerability in the Linux kernel's af_packet.c module. It allows local attackers to escalate privileges to kernel...

CVE-2024-33053 is a use-after-free vulnerability in Qualcomm's CVP buffer management that allows memory corruption when multiple threads simultaneousl...

This vulnerability allows memory corruption when two processes concurrently create and destroy the same HAB virtual channel via IOCTL calls. It affect...

This CVE describes a use-after-free vulnerability in Qualcomm audio components where a race condition between allocation and deallocation of graph obj...

This CVE describes a use-after-free vulnerability in Qualcomm components where registering multiple listeners with the same file descriptor can cause ...

This CVE describes a use-after-free vulnerability in the Android kernel that could allow local privilege escalation. Attackers with system execution p...

This vulnerability allows memory corruption in Qualcomm's cryptographic driver when handling buffer mapping operations. Attackers could potentially ex...

This vulnerability allows memory corruption through improper handling of IOCTL calls when adding route entries in Qualcomm hardware. Attackers could p...

This vulnerability allows memory corruption through improper handling of IOCTL map buffer requests from userspace. Attackers could potentially execute...

This CVE describes a memory corruption vulnerability in Qualcomm components where improper validation of user-space buffers during IOCTL calls allows ...

This CVE describes a use-after-free vulnerability in a security module that could allow attackers to crash affected systems, potentially causing denia...

A Use After Free vulnerability in Juniper's chassis daemon allows authenticated low-privilege attackers to cause denial-of-service by repeatedly subsc...

This CVE describes a use-after-free vulnerability in the JavaScript garbage collection component of Mozilla products. Attackers could exploit this to ...

This CVE describes a use-after-free vulnerability in Apple's WebKit browser engine that affects multiple Apple operating systems and Safari. Processin...

This vulnerability is a use-after-free flaw in Live555 Streaming Media's MPEG1or2Demux component that allows attackers to cause denial of service by s...

This vulnerability allows attackers to cause a Denial of Service (DoS) by exploiting a use-after-free bug in Live555's ADTS/AAC file parsing. Attacker...

NetSurf 3.11 contains a use-after-free vulnerability in the dom_node_set_text_content function that could allow memory corruption. This affects users ...

CVE-2025-57109 is a heap use-after-free vulnerability in Kitware VTK's GLTF file importer that could allow attackers to crash applications or potentia...

Envoy proxy versions before 1.36.2, 1.35.6, 1.34.10, and 1.33.12 contain a use-after-free vulnerability in the Lua filter. When a Lua script rewrites ...

A use-after-free vulnerability in Apple's Safari browser and related WebKit components allows attackers to cause unexpected crashes by processing mali...

A use-after-free vulnerability (CWE-416) in IBM MQ 9.3 and 9.4 allows a malicious client to crash the AMQRMPPA channel process via SIGSEGV when connec...

A use-after-free vulnerability in Samsung Exynos 2200, 1480, and 2400 mobile processors allows local attackers to escalate privileges. This affects de...

This vulnerability in ChromeOS ComponentInstaller allows enrolled users with physical access to unenroll devices from enterprise management and interc...

This vulnerability allows JavaScript code to trigger a use-after-free condition during XSLT document transformations in Mozilla browsers and email cli...

This vulnerability is a use-after-free memory corruption flaw in Chrome's V8 JavaScript engine. It allows remote attackers to potentially execute arbi...

CVE-2024-27217 is a use-after-free vulnerability in OpenHarmony v4.0.0 and earlier that allows local attackers to execute arbitrary code within pre-in...

A use-after-free vulnerability in Sante DICOM Viewer Pro allows remote attackers to disclose sensitive information when users open malicious DCM files...

A use-after-free vulnerability in the screen recording framework module could allow attackers to crash affected systems, affecting availability. This ...

A use-after-free vulnerability in UEFI firmware on specific Intel server BIOS allows privileged local users to potentially escalate privileges. This a...

This CVE describes a use-after-free vulnerability in the Android kernel's DIT (Data Interface Technology) driver due to a race condition in the dit_ha...

A use-after-free vulnerability in the ESP-IDF BLE provisioning transport layer allows remote attackers to trigger invalid memory access via Bluetooth ...

This is a use-after-free vulnerability in the Linux kernel's blktrace subsystem that allows local attackers to cause a kernel NULL pointer dereference...

A use-after-free vulnerability in Google Chrome's Password Manager allows remote attackers to potentially escape the browser sandbox via a crafted HTM...

A use-after-free vulnerability in Intel PROSet/Wireless WiFi Software for Windows allows an unauthenticated attacker on the same network to potentiall...

A Use-After-Free vulnerability in the display module allows attackers to exploit memory corruption after memory has been freed. This could lead to abn...

A denial-of-service vulnerability in c-ares resolver library versions 1.32.3 through 1.34.5 causes queries to terminate after maximum attempts when us...

This vulnerability in Microsoft Edge (Chromium-based) allows remote attackers to execute arbitrary code on affected systems by exploiting a use-after-...

This CVE describes a use-after-free vulnerability in Envoy's QUIC implementation that can cause a crash when processing HTTP/3 requests. The vulnerabi...

This CVE describes a use-after-free vulnerability in the USB driver module that could allow an attacker to execute arbitrary code or cause a system cr...

This CVE describes a use-after-free vulnerability in Imagination Technologies GPU drivers that could allow attackers to cause kernel exceptions or pot...

This vulnerability allows an attacker on the same local network to cause unexpected application termination (denial of service) on affected Apple devi...

This critical vulnerability in MicroPython's objarray component allows attackers to trigger a use-after-free condition when bytes objects are resized ...

This CVE describes an out-of-bounds access vulnerability in a frequency modulation module that could allow attackers to cause denial of service condit...

A use-after-free vulnerability in Redboltz async_mqtt 10.2.5 allows local users to cause denial of service by triggering SSL initialization failures, ...

Format Plugins versions 1.1.1 and earlier contain a Use After Free vulnerability that could allow memory exposure when processing malicious files. An ...

A use-after-free vulnerability in the Linux kernel's skmsg subsystem where alloc_sk_msg() could be called from a non-sleepable context without proper ...

This CVE describes a use-after-free vulnerability in the Linux kernel's qlcnic driver. When qlcnic_dcb_enable() fails under out-of-memory conditions, ...

A use-after-free vulnerability in the Linux kernel's hibmc DRM driver allows local attackers to cause kernel crashes or potentially execute arbitrary ...

A use-after-free vulnerability in the Linux kernel's Intel QAT crypto driver allows kernel crashes when repeatedly loading/unloading device-specific d...