Weaknesses of type CWE-416

4,138 results
CVE-2026-4691CRITICALUse-after-free in the CSS Parsing and Computation componentEPSS 0.5%CVE-2026-4696CRITICALUse-after-free in the Layout: Text and Fonts componentEPSS 0.5%CVE-2022-3297HIGHUse After Free in vim/vimEPSS 0.5%CVE-2025-62229HIGHXorg: xmayland: use-after-free in xpresentnotify structure creationEPSS 0.5%CVE-2025-62203HIGHMicrosoft Excel Remote Code Execution VulnerabilityEPSS 0.5%CVE-2026-5860HIGHUse after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a EPSS 0.5%CVE-2024-0807HIGHUse after free in Web Audio in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a cEPSS 0.5%CVE-2022-4382MEDIUMA use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yankEPSS 0.5%CVE-2023-30772MEDIUMThe Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/power/supply/da9150-charger.c if a physically proEPSS 0.5%CVE-2026-13870HIGHUse after free in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a saEPSS 0.5%CVE-2024-5842HIGHUse after free in Browser UI in Google Chrome prior to 126.0.6478.54 allowed a remote attacker who convinced a user to engage in specific UIEPSS 0.5%CVE-2025-43576HIGHAcrobat Reader | Use After Free (CWE-416)EPSS 0.5%CVE-2021-4322HIGHUse after free in DevTools in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension EPSS 0.5%CVE-2024-3187MEDIUMThis issue tracks two CWE-416 Use After Free (UAF) and one CWE-415 Double Free vulnerabilities in Goahead versions <= 6.0.0. These are causeEPSS 0.5%CVE-2024-23135HIGHMultiple Vulnerabilities in the Autodesk AutoCAD Desktop SoftwareEPSS 0.5%CVE-2024-5841HIGHUse after free in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted EPSS 0.5%CVE-2024-5832HIGHUse after free in Dawn in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafteEPSS 0.5%CVE-2026-2758CRITICALUse-after-free in the JavaScript: GC componentEPSS 0.5%CVE-2023-21680HIGHWindows Win32k Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2026-26986MEDIUMFreeRDP has heap-use-after-free in rail_window_freeEPSS 0.5%