Weaknesses of type CWE-416

4,151 results
CVE-2026-11117HIGHUse after free in Views in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a craftedEPSS 0.3%CVE-2023-1281HIGHUAF in Linux kernel's tcindex (traffic control index filter) implementationEPSS 0.3%CVE-2025-27492HIGHWindows Secure Channel Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2024-3171HIGHUse after free in Accessibility in Google Chrome prior to 122.0.6261.57 allowed a remote attacker who convinced a user to engage in specificEPSS 0.3%CVE-2026-40419HIGHMicrosoft Office Click-To-Run Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2024-26898HIGHaoe: fix the potential use-after-free problem in aoecmd_cfg_pktsEPSS 0.3%CVE-2025-3212MEDIUMMali GPU Kernel Driver allows access to already freed memoryEPSS 0.3%CVE-2026-34330HIGHWin32k Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2026-10990HIGHUse after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentiEPSS 0.3%CVE-2026-9158MEDIUMIn Eclipse 4diac FORTE versions 3.0.0 to 3.1.0, a specially crafted DELETE connection command to the management interface can lead to a dangEPSS 0.3%CVE-2026-11002HIGHUse after free in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potEPSS 0.3%CVE-2024-8816LOWPDF-XChange Editor U3D File Parsing Use-After-Free Information Disclosure VulnerabilityEPSS 0.3%CVE-2026-5877HIGHUse after free in Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox viEPSS 0.3%CVE-2026-9941HIGHUse after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a EPSS 0.3%CVE-2026-5872HIGHUse after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a cEPSS 0.3%CVE-2026-9947HIGHUse after free in XML in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crEPSS 0.3%CVE-2026-13774HIGHUse after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extensiEPSS 0.3%CVE-2026-5861HIGHUse after free in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafEPSS 0.3%CVE-2024-12694HIGHUse after free in Compositing in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to potentially exploit heap corruption via EPSS 0.3%CVE-2026-5866HIGHUse after free in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a cEPSS 0.3%