Weaknesses of type CWE-416
4,172 resultsCVE-2026-45640HIGHWindows Bluetooth Port Driver Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2026-11163CRITICALUse after free in Messages in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escEPSS 0.2%CVE-2026-9978HIGHUse after free in Glic in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a cEPSS 0.2%CVE-2022-49669HIGHmptcp: fix race on unaccepted mptcp socketsEPSS 0.2%CVE-2026-42911HIGHWindows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2026-11152CRITICALObject lifecycle issue in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape viaEPSS 0.2%CVE-2026-9984HIGHUse after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HEPSS 0.2%CVE-2025-21764HIGHndisc: use RCU protection in ndisc_alloc_skb()EPSS 0.2%CVE-2026-13031HIGHUse after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a EPSS 0.2%CVE-2022-48754HIGHphylib: fix potential use-after-freeEPSS 0.2%CVE-2022-2977—A flaw was found in the Linux kernel implementation of proxied virtualized TPM devices. On a system where virtualized TPM devices are configEPSS 0.2%CVE-2024-50121HIGHnfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_netEPSS 0.2%CVE-2026-13036HIGHUse after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a EPSS 0.2%CVE-2025-59189HIGHMicrosoft Brokering File System Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2024-35801HIGHx86/fpu: Keep xfd_state in sync with MSR_IA32_XFDEPSS 0.2%CVE-2022-2978—A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function security_inode_alloc to fail with foEPSS 0.2%CVE-2026-9964HIGHUse after free in Bluetooth in Google Chrome on Mac prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious EPSS 0.2%CVE-2021-47068HIGHnet/nfc: fix use-after-free llcp_sock_bind/connectEPSS 0.2%CVE-2024-50067HIGHuprobe: avoid out-of-bounds memory access of fetching argsEPSS 0.2%CVE-2022-48674MEDIUMerofs: fix pcluster use-after-free on UP platformsEPSS 0.2%