Weaknesses of type CWE-416
4,185 resultsCVE-2026-11250CRITICALInappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer EPSS 0.2%CVE-2024-26957—s390/zcrypt: fix reference counting on zcrypt card objectsEPSS 0.2%CVE-2024-26939—drm/i915/vma: Fix UAF on destroy against retire raceEPSS 0.2%CVE-2024-56581HIGHbtrfs: ref-verify: fix use-after-free after invalid ref actionEPSS 0.2%CVE-2021-47232HIGHcan: j1939: fix Use-after-Free, hold skb ref while in useEPSS 0.2%CVE-2024-38588HIGHftrace: Fix possible use-after-free issue in ftrace_location()EPSS 0.2%CVE-2022-49087HIGHrxrpc: fix a race in rxrpc_exit_net()EPSS 0.2%CVE-2023-3317HIGHA use-after-free flaw was found in mt7921_check_offload_capability in drivers/net/wireless/mediatek/mt76/mt7921/init.c in wifi mt76/mt7921 sEPSS 0.2%CVE-2024-56642HIGHtipc: Fix use-after-free of kernel socket in cleanup_bearer().EPSS 0.2%CVE-2023-46691HIGHUse after free in Intel(R) Power Gadget software for Windows all versions may allow an authenticated user to potentially enable escalation oEPSS 0.2%CVE-2023-28653HIGH
The affected application lacks proper validation of user-supplied data when parsing project files (e.g., CSP). This could lEPSS 0.2%CVE-2022-3424HIGHA use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the EPSS 0.2%CVE-2024-53166HIGHblock, bfq: fix bfqq uaf in bfq_limit_depth()EPSS 0.2%CVE-2024-56606HIGHaf_packet: avoid erroring out after sock_init_data() in packet_create()EPSS 0.2%CVE-2025-8176MEDIUMLibTIFF tiffmedian.c get_histogram use after freeEPSS 0.2%CVE-2025-55335HIGHWindows NTFS Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2025-55687HIGHWindows Resilient File System (ReFS) Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2024-42326MEDIUMUse after free vulnerability in browser.cEPSS 0.2%CVE-2025-62573HIGHDirectX Graphics Kernel Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2024-53103HIGHhv_sock: Initializing vsk->trans to NULL to prevent a dangling pointerEPSS 0.2%