Falhas do tipo CWE-416

4.185 resultados
CVE-2026-11100CRITICALUse after free in File Input in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specEPSS 0.3%CVE-2024-48423HIGHAn issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp librEPSS 0.3%CVE-2025-66494HIGHFoxit PDF Reader PDF File Parsing Use-After-Free Remote Code Execution VulnerabilityEPSS 0.3%CVE-2025-13014HIGHUse-after-free in the Audio/Video componentEPSS 0.3%CVE-2025-66495HIGHFoxit PDF Reader Annotation Use-After-Free Remote Code Execution VulnerabilityEPSS 0.3%CVE-2026-9922HIGHUse after free in GPU in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to EPSS 0.3%CVE-2026-9956HIGHUse after free in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UEPSS 0.3%CVE-2023-4611HIGHUse after free race between mbind() and vma-locked page faultEPSS 0.3%CVE-2023-52975HIGHscsi: iscsi_tcp: Fix UAF during logout when accessing the shost ipaddressEPSS 0.3%CVE-2026-40418HIGHMicrosoft Office Click-To-Run Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2024-12175HIGHRockwell Automation Code Execution Vulnerability in ArenaEPSS 0.3%CVE-2024-57900HIGHila: serialize calls to nf_register_net_hooks()EPSS 0.3%CVE-2021-47646HIGHRevert "Revert "block, bfq: honor already-setup queue merges""EPSS 0.3%CVE-2022-49078HIGHlz4: fix LZ4_decompress_safe_partial read out of boundEPSS 0.3%CVE-2024-23848MEDIUMIn the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/mEPSS 0.3%CVE-2026-47924MEDIUMAcrobat Reader | Use After Free (CWE-416)EPSS 0.3%CVE-2024-0562HIGHKernel: use-after-free after removing device in wb_inode_writeback_end in mm/page-writeback.cEPSS 0.3%CVE-2021-47375MEDIUMblktrace: Fix uaf in blk_trace access after removing by sysfsEPSS 0.3%CVE-2026-10655MEDIUMUse-after-free race in SNTP async client when closing the socket while the socket service is still polling itEPSS 0.3%CVE-2026-14043CRITICALUse after free in GetUserMedia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process toEPSS 0.3%