Weaknesses of type CWE-416

4,153 results
CVE-2025-13845HIGHCWE-416: Use After Free vulnerability that could cause remote code execution when the end user imports the malicious project file (SSD file)EPSS 0.3%CVE-2026-14111HIGHUse after free in WebProtect in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extensiEPSS 0.3%CVE-2024-3171HIGHUse after free in Accessibility in Google Chrome prior to 122.0.6261.57 allowed a remote attacker who convinced a user to engage in specificEPSS 0.3%CVE-2026-40419HIGHMicrosoft Office Click-To-Run Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2024-26898HIGHaoe: fix the potential use-after-free problem in aoecmd_cfg_pktsEPSS 0.3%CVE-2025-27492HIGHWindows Secure Channel Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2023-1281HIGHUAF in Linux kernel's tcindex (traffic control index filter) implementationEPSS 0.3%CVE-2025-3212MEDIUMMali GPU Kernel Driver allows access to already freed memoryEPSS 0.3%CVE-2026-9158MEDIUMIn Eclipse 4diac FORTE versions 3.0.0 to 3.1.0, a specially crafted DELETE connection command to the management interface can lead to a dangEPSS 0.3%CVE-2026-10990HIGHUse after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentiEPSS 0.3%CVE-2026-34330HIGHWin32k Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2026-11002HIGHUse after free in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potEPSS 0.3%CVE-2024-8816LOWPDF-XChange Editor U3D File Parsing Use-After-Free Information Disclosure VulnerabilityEPSS 0.3%CVE-2026-9941HIGHUse after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a EPSS 0.3%CVE-2026-9945HIGHUse after free in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sanEPSS 0.3%CVE-2026-5866HIGHUse after free in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a cEPSS 0.3%CVE-2026-5877HIGHUse after free in Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox viEPSS 0.3%CVE-2026-9927HIGHUse after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a EPSS 0.3%CVE-2026-14006HIGHUse after free in Navigation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML EPSS 0.3%CVE-2024-12694HIGHUse after free in Compositing in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to potentially exploit heap corruption via EPSS 0.3%