Weaknesses of type CWE-416
4,170 resultsCVE-2026-28994MEDIUMA use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadEPSS 0.2%CVE-2026-11230HIGHUse after free in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox viEPSS 0.2%CVE-2026-11652HIGHUse after free in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to EPSS 0.2%CVE-2024-25385MEDIUMAn issue in flvmeta v.1.2.2 allows a local attacker to cause a denial of service via the flvmeta/src/flv.c:375:21 function in flv_close.EPSS 0.2%CVE-2026-8002HIGHUse after free in Audio in Google Chrome on Mac prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox EPSS 0.2%CVE-2022-49651HIGHsrcu: Tighten cleanup_srcu_struct() GP checksEPSS 0.2%CVE-2022-49622HIGHnetfilter: nf_tables: avoid skb access on nf_stolenEPSS 0.2%CVE-2023-2680HIGHDma reentrancy issue (incomplete fix for cve-2021-3750)EPSS 0.2%CVE-2024-50154HIGHtcp/dccp: Don't use timer_pending() in reqsk_queue_unlink().EPSS 0.2%CVE-2022-49238HIGHath11k: free peer for station when disconnect from AP for QCA6390/WCN6855EPSS 0.2%CVE-2022-49136HIGHBluetooth: hci_sync: Fix queuing commands when HCI_UNREGISTER is setEPSS 0.2%CVE-2026-27916HIGHWindows UPnP Device Host Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2026-43699MEDIUMA use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, maEPSS 0.2%CVE-2026-43734MEDIUMA use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, maEPSS 0.2%CVE-2024-26598HIGHKVM: arm64: vgic-its: Avoid potential UAF in LPI translation cacheEPSS 0.2%CVE-2026-43709MEDIUMA use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, maEPSS 0.2%CVE-2026-11250CRITICALInappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer EPSS 0.2%CVE-2021-47232HIGHcan: j1939: fix Use-after-Free, hold skb ref while in useEPSS 0.2%CVE-2024-56581HIGHbtrfs: ref-verify: fix use-after-free after invalid ref actionEPSS 0.2%CVE-2024-26957—s390/zcrypt: fix reference counting on zcrypt card objectsEPSS 0.2%