Weaknesses of type CWE-416

4,170 results
CVE-2022-49093HIGHskbuff: fix coalescing for page_pool fragment recyclingEPSS 0.2%CVE-2026-11671CRITICALUse after free in Navigation in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via EPSS 0.2%CVE-2022-41848MEDIUMdrivers/char/pcmcia/synclink_cs.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free if a physically proxEPSS 0.2%CVE-2026-11674HIGHUse after free in Guest View in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox vEPSS 0.2%CVE-2026-11673HIGHUse after free in InterestGroups in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbEPSS 0.2%CVE-2026-10703MEDIUMEIPStackGroup OpENer SendRRData cipmessagerouter.c CreateMessageRouterRequestStructure use after freeEPSS 0.2%CVE-2026-11680HIGHUse after free in Media in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sanEPSS 0.2%CVE-2024-50283HIGHksmbd: fix slab-use-after-free in smb3_preauth_hash_rspEPSS 0.2%CVE-2022-3239A flaw use after free in the Linux kernel video4linux driver was found in the way user triggers em28xx_usb_probe() for the Empia 28xx based EPSS 0.2%CVE-2026-9886CRITICALUse after free in Base in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape viaEPSS 0.2%CVE-2026-28687MEDIUMImageMagick has a Heap Use-After-Free in ImageMagick MSL decoderEPSS 0.2%CVE-2024-3857HIGHThe JIT created incorrect code for arguments in certain cases. This led to potential use-after-free crashes during garbage collection. This EPSS 0.2%CVE-2024-57979HIGHpps: Fix a use-after-freeEPSS 0.2%CVE-2026-9961HIGHUse after free in SurfaceCapture in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption vEPSS 0.2%CVE-2026-9876CRITICALUse after free in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escapEPSS 0.2%CVE-2026-27917HIGHWindows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2026-40410HIGHWindows SMB Client Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2026-8002HIGHUse after free in Audio in Google Chrome on Mac prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox EPSS 0.2%CVE-2023-52629HIGHsh: push-switch: Reorder cleanup operations to avoid use-after-free bugEPSS 0.2%CVE-2024-25385MEDIUMAn issue in flvmeta v.1.2.2 allows a local attacker to cause a denial of service via the flvmeta/src/flv.c:375:21 function in flv_close.EPSS 0.2%