Weaknesses of type CWE-416
4,172 resultsCVE-2026-8549HIGHUse after free in Media in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a EPSS 0.3%CVE-2026-9957HIGHUse after free in PDF in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crEPSS 0.3%CVE-2023-1670HIGHA flaw use after free in the Linux kernel Xircom 16-bit PCMCIA (PC-card) Ethernet driver was found.A local user could use this flaw to crashEPSS 0.3%CVE-2022-20447MEDIUMIn PAN_WriteBuf of pan_api.cc, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosEPSS 0.3%CVE-2026-12437HIGHUse after free in WebShare in Google Chrome on Windows prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer prEPSS 0.3%CVE-2022-49168HIGHbtrfs: do not clean up repair bio if submit failsEPSS 0.3%CVE-2026-13814HIGHUse after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestEPSS 0.3%CVE-2026-13832HIGHUse after free in Headless in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potEPSS 0.3%CVE-2026-11030HIGHUse after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via malicEPSS 0.3%CVE-2026-13823HIGHUse after free in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentiEPSS 0.3%CVE-2026-57585HIGHMessagePack: Out-of-bounds read/crash on Unpacker reuse after caught errorEPSS 0.3%CVE-2026-13804HIGHUse after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to pEPSS 0.3%CVE-2023-52974HIGHscsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddressEPSS 0.3%CVE-2026-3936HIGHUse after free in WebView in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruptioEPSS 0.3%CVE-2025-53814HIGHA use-after-free vulnerability exists in the XML parser functionality of GCC Productions Inc. Fade In 4.2.0. A specially crafted .xml file cEPSS 0.3%CVE-2022-1973—A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. This flaw allows a local attackerEPSS 0.3%CVE-2026-5460MEDIUMHeap Use-After-Free in PQC Hybrid KeyShare Error Cleanup in wolfSSL TLS 1.3EPSS 0.3%CVE-2026-5289CRITICALUse after free in Navigation in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to EPSS 0.3%CVE-2026-10915HIGHUse after free in Core in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to EPSS 0.3%CVE-2025-21703HIGHnetem: Update sch->q.qlen before qdisc_tree_reduce_backlog()EPSS 0.3%