Weaknesses of type CWE-416
4,138 resultsCVE-2022-43033MEDIUMAn issue was discovered in Bento4 1.6.0-639. There is a bad free in the component AP4_HdlrAtom::~AP4_HdlrAtom() which allows attackers to caEPSS 0.6%CVE-2023-35351MEDIUMWindows Active Directory Certificate Services (AD CS) Remote Code Execution VulnerabilityEPSS 0.6%CVE-2024-36844HIGHlibmodbus v3.1.6 was discovered to contain a use-after-free via the ctx->backend pointer. This vulnerability allows attackers to cause a DenEPSS 0.6%CVE-2026-40361HIGHMicrosoft Outlook and Word Remote Code Execution VulnerabilityEPSS 0.6%CVE-2023-0128HIGHUse after free in Overview Mode in Google Chrome on Chrome OS prior to 109.0.5414.74 allowed a remote attacker who convinced a user to engagEPSS 0.6%CVE-2024-38252HIGHWindows Win32 Kernel Subsystem Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2024-38253HIGHWindows Win32 Kernel Subsystem Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2023-25747HIGHA potential use-after-free in libaudio was fixed by disabling the AAudio backend when running on Android API below version 30.
*This bug onlEPSS 0.6%CVE-2026-8696HIGHradare2 6.1.5 Use-After-Free via gdbr_pids_list()EPSS 0.6%CVE-2024-34096HIGHZDI-CAN-23472: Adobe Acrobat Reader DC Annotation Use-After-Free Remote Code Execution VulnerabilityEPSS 0.6%CVE-2024-34095HIGHZDI-CAN-23475: Adobe Acrobat Reader DC Annotation Use-After-Free Remote Code Execution VulnerabilityEPSS 0.6%CVE-2024-34097HIGHZDI-CAN-23473: Adobe Acrobat Reader DC Annotation Use-After-Free Remote Code Execution VulnerabilityEPSS 0.6%CVE-2022-24050HIGHMariaDB CONNECT Storage Engine Use-After-Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privEPSS 0.6%CVE-2023-29356HIGHMicrosoft ODBC Driver for SQL Server Remote Code Execution VulnerabilityEPSS 0.6%CVE-2025-21367HIGHWindows Win32 Kernel Subsystem Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2026-47653HIGHRemote Desktop Client Remote Code Execution VulnerabilityEPSS 0.6%CVE-2026-12443HIGHUse after free in Web Authentication in Google Chrome prior to 149.0.7827.155 allowed a remote attacker to execute arbitrary code via a crafEPSS 0.6%CVE-2022-3888HIGHUse after free in WebCodecs in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a EPSS 0.6%CVE-2023-0941HIGHUse after free in Prompts in Google Chrome prior to 110.0.5481.177 allowed a remote attacker to potentially exploit heap corruption via a crEPSS 0.6%CVE-2023-0928HIGHUse after free in SwiftShader in Google Chrome prior to 110.0.5481.177 allowed a remote attacker to potentially exploit heap corruption via EPSS 0.6%