Weaknesses of type CWE-416

4,147 results
CVE-2023-44436HIGHKofax Power PDF File Parsing Use-After-Free Remote Code Execution VulnerabilityEPSS 0.4%CVE-2025-58728HIGHWindows Bluetooth Service Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2025-50175HIGHWindows Digital Media Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2024-9960HIGHUse after free in Dawn in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to potentially exploit heap corruption via a crafteEPSS 0.4%CVE-2026-44422HIGHFreeRDP RDPEAR NDR ref-id aliasing causes client-side UAF/double-free and type confusionEPSS 0.4%CVE-2026-8092HIGHMemory safety bugs fixed in Firefox ESR 115.35.2, Firefox ESR 140.10.2 and Firefox 150.0.2EPSS 0.4%CVE-2026-2767HIGHUse-after-free in the JavaScript: WebAssembly componentEPSS 0.4%CVE-2018-1166This vulnerability allows local attackers to escalate privileges on vulnerable installations of Joyent SmartOS release-20170803-20170803T064EPSS 0.4%CVE-2025-62504MEDIUMEnvoy Lua filter use-after-free when oversized rewritten response body causes crashEPSS 0.4%CVE-2026-32154HIGHDesktop Window Manager Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2026-40366HIGHMicrosoft Word Remote Code Execution VulnerabilityEPSS 0.4%CVE-2026-9952HIGHUse after free in WebAudio in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox viaEPSS 0.4%CVE-2025-54103HIGHWindows Management Service Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2026-12291HIGHUse-after-free in the Networking: HTTP componentEPSS 0.4%CVE-2024-0813HIGHUse after free in Reading Mode in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extenEPSS 0.4%CVE-2025-49700HIGHMicrosoft Word Remote Code Execution VulnerabilityEPSS 0.4%CVE-2024-8638HIGHType Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit object corruption via a craftEPSS 0.4%CVE-2024-43472MEDIUMMicrosoft Edge (Chromium-based) Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2025-47976HIGHWindows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2023-52115HIGHThe iaware module has a Use-After-Free (UAF) vulnerability. Successful exploitation of this vulnerability may affect the system functions.EPSS 0.4%