Weaknesses of type CWE-416
4,185 resultsCVE-2026-11071HIGHUse after free in Base in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process tEPSS 0.2%CVE-2026-8511CRITICALUse after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafteEPSS 0.2%CVE-2026-11165CRITICALUse after free in WebMIDI in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape vEPSS 0.2%CVE-2026-14093CRITICALUse after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentiEPSS 0.2%CVE-2026-34335HIGHWindows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2022-49694HIGHblock: disable the elevator int del_gendiskEPSS 0.2%CVE-2026-11188HIGHUse after free in USB in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape vEPSS 0.2%CVE-2024-32610MEDIUMHDF5 Library through 1.14.3 has a SEGV in H5T_close_real in H5T.c, resulting in a corrupted instruction pointer.EPSS 0.2%CVE-2026-9874CRITICALUse after free in Dawn in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafEPSS 0.2%CVE-2022-49127HIGHref_tracker: implement use-after-free detectionEPSS 0.2%CVE-2026-11131CRITICALUse after free in Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer proEPSS 0.2%CVE-2026-9964HIGHUse after free in Bluetooth in Google Chrome on Mac prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious EPSS 0.2%CVE-2026-13031HIGHUse after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a EPSS 0.2%CVE-2022-2978—A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function security_inode_alloc to fail with foEPSS 0.2%CVE-2026-13036HIGHUse after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a EPSS 0.2%CVE-2024-50067HIGHuprobe: avoid out-of-bounds memory access of fetching argsEPSS 0.2%CVE-2025-59189HIGHMicrosoft Brokering File System Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2024-35801HIGHx86/fpu: Keep xfd_state in sync with MSR_IA32_XFDEPSS 0.2%CVE-2024-50121HIGHnfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_netEPSS 0.2%CVE-2022-2977—A flaw was found in the Linux kernel implementation of proxied virtualized TPM devices. On a system where virtualized TPM devices are configEPSS 0.2%