Falhas do tipo CWE-416
3.990 resultadosCVE-2018-15982HIGHFlash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have a use after free vulnerability. Successful exploitation could EPSS 81.8%KEVCVE-2012-4969HIGHUse-after-free vulnerability in the CMshtmlEd::Exec function in mshtml.dll in Microsoft Internet Explorer 6 through 9 allows remote attackerEPSS 81.7%KEVCVE-2021-26411HIGHInternet Explorer Memory Corruption VulnerabilityEPSS 81.1%KEVCVE-2025-21298CRITICALWindows OLE Remote Code Execution VulnerabilityEPSS 80.9%CVE-2012-4792HIGHUse-after-free vulnerability in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code via a crafted web EPSS 78.8%KEVCVE-2017-0261HIGHMicrosoft Office 2010 SP2, Office 2013 SP1, and Office 2016 allow a remote code execution vulnerability when the software fails to properly EPSS 78.1%KEVCVE-2013-1347HIGHMicrosoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessiEPSS 77.9%KEVCVE-2013-3897HIGHUse-after-free vulnerability in the CDisplayPointer class in mshtml.dll in Microsoft Internet Explorer 6 through 11 allows remote attackers EPSS 77.5%KEVCVE-2013-2551HIGHUse-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted webEPSS 73.9%KEVCVE-2021-40449HIGHWin32k Elevation of Privilege VulnerabilityEPSS 73.4%KEVCVE-2019-13720HIGHUse after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a craEPSS 73.0%KEVCVE-2019-1429HIGHA remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'ScripEPSS 72.6%KEVCVE-2019-2215HIGHA use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exEPSS 72.1%KEVCVE-2020-13557HIGHA use after free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially craftEPSS 70.9%CVE-2019-5096CRITICALAn exploitable code execution vulnerability exists in the processing of multi-part/form-data requests within the base GoAhead web server appEPSS 70.8%CVE-2021-39836HIGHAdobe Acrobat Reader DC AcroForm buttonGetIcon Use-After-Free Remote Code Execution VulnerabilityEPSS 68.7%CVE-2020-13548HIGHIn Foxit Reader 10.1.0.37527, a specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code EPSS 66.7%CVE-2021-28639HIGHAdobe Acrobat Reader DC setAction Use-After-Free Remote Code Execution VulnerabilityEPSS 66.1%CVE-2019-0211HIGHIn Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes orEPSS 65.0%KEVCVE-2021-39837HIGHAdobe Acrobat Reader DC AcroForm deleteItemAt Use-After-Free Remote Code Execution VulnerabilityEPSS 64.3%