Weaknesses of type CWE-416

4,185 results
CVE-2021-46973HIGHnet: qrtr: Avoid potential use after free in MHI sendEPSS 0.2%CVE-2026-14390CRITICALUse after free in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafEPSS 0.2%CVE-2026-14394HIGHUse after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially exploit heap corruption via a crafted EPSS 0.2%CVE-2024-53170HIGHblock: fix uaf for flush rq while iterating tagsEPSS 0.2%CVE-2026-11188HIGHUse after free in USB in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape vEPSS 0.2%CVE-2026-11152CRITICALObject lifecycle issue in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape viaEPSS 0.2%CVE-2026-11080HIGHUse after free in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruptioEPSS 0.2%CVE-2026-42911HIGHWindows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2026-9992HIGHUse after free in Network in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via EPSS 0.2%CVE-2026-11094CRITICALUse after free in Codecs in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer proceEPSS 0.2%CVE-2026-11082CRITICALRace in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentiEPSS 0.2%CVE-2022-49669HIGHmptcp: fix race on unaccepted mptcp socketsEPSS 0.2%CVE-2026-47293HIGHMicrosoft Office Click-To-Run Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2026-11114CRITICALUse after free in Device Trust in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer proEPSS 0.2%CVE-2026-9978HIGHUse after free in Glic in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a cEPSS 0.2%CVE-2026-11163CRITICALUse after free in Messages in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escEPSS 0.2%CVE-2025-21764HIGHndisc: use RCU protection in ndisc_alloc_skb()EPSS 0.2%CVE-2026-9984HIGHUse after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HEPSS 0.2%CVE-2026-45640HIGHWindows Bluetooth Port Driver Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2026-11177HIGHUse after free in Omnibox in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI geEPSS 0.2%