CWE-416 · Use After Free

7649 CVEs classified under CWE-416 (Use After Free). Browse by severity and year.

Top CVEs for CWE-416
CVESeverityScorePublishedSummary
CVE-2026-4725Critical10.02026-03-24Sandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 149 and Thunderbird 149.
CVE-2026-4688Critical10.02026-03-24Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149…
CVE-2025-24085Critical10.02025-01-27A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.6, macOS Sequoia 15.3, macOS…
CVE-2024-43102Critical10.02024-09-05Concurrent removals of certain anonymous shared memory mappings by using the UMTX_SHM_DESTROY sub-request of UMTX_OP_SHM can lead to decreasing the reference c…
CVE-2021-32495Critical10.02023-07-07Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to ca…
CVE-2021-33796Critical10.02023-07-07In MuJS before version 1.1.2, a use-after-free flaw in the regexp source property access may cause denial of service.
CVE-2021-22893Critical10.02021-04-23Pulse Connect Secure 9.0R3/9.1R1 and higher is vulnerable to an authentication bypass vulnerability exposed by the Windows File Share Browser and Pulse Secure…
CVE-2016-6082Critical10.02017-02-01IBM BigFix Platform could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free race condition. An attacker could exploit…
CVE-2025-49708Critical9.92025-10-14Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges over a network.
CVE-2025-49844Critical9.92025-10-03Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script t…
CVE-2009-3616Critical9.92009-10-23Multiple use-after-free vulnerabilities in vnc.c in the VNC server in QEMU 0.10.6 and earlier might allow guest OS users to execute arbitrary code on the host…
CVE-2026-7531Critical9.82026-06-25Use-after-free in PQC hybrid key-share handling. This is an incomplete-fix follow-up to CVE-2026-5460 (released in 5.9.1): a malicious TLS 1.3 server sending a…
CVE-2026-12293Critical9.82026-06-16Use-after-free in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 152 and Thunderbird 152.
CVE-2026-45657Critical9.82026-06-09Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network.
CVE-2026-29167Critical9.82026-06-08Use After Free vulnerability in Apache HTTP Server with mod_ldap in per-directory configuration This issue affects Apache HTTP Server: from 2.4.0 through 2.4…
CVE-2026-45972Critical9.82026-05-27In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF and double free in smb2_open_file() Zero out @err_iov and…
CVE-2026-33278Critical9.82026-05-20NLnet Labs Unbound 1.19.1 up to and including version 1.25.0 has a vulnerability in the DNSSEC validator that enables denial of service and possible remote cod…
CVE-2026-45185Critical9.82026-05-12Exim before 4.99.3, in certain GnuTLS configurations, has a remotely reachable use-after-free in the BDAT body parsing path. It is triggered when a client send…
CVE-2026-7261Critical9.82026-05-10In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when SoapServer is configured with SOAP_PERSISTENCE_SESS…
CVE-2026-6722Critical9.82026-05-10In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the SOAP extension's object deduplication mechanism stor…