Fallos del tipo CWE-416

4147 resultados
CVE-2026-26134HIGHMicrosoft Office Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2021-3715A flaw was found in the "Routing decision" classifier in the Linux kernel's Traffic Control networking subsystem in the way it handled changEPSS 0.4%CVE-2023-26426HIGHAdobe Illustrator (Beta) has a UAF vulnerability when parsing SVG files Arbitrary code executionEPSS 0.4%CVE-2023-41071HIGHA use-after-free issue was addressed with improved memory management. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOEPSS 0.4%CVE-2024-27929HIGHUse After Free in SixLabors.ImageSharpEPSS 0.4%CVE-2025-59221HIGHMicrosoft Word Remote Code Execution VulnerabilityEPSS 0.4%CVE-2023-43552CRITICALUse After Free in WLAN Host CommunicationEPSS 0.4%CVE-2025-48806HIGHMicrosoft MPEG-2 Video Extension Remote Code Execution VulnerabilityEPSS 0.4%CVE-2026-4684HIGHRace condition, use-after-free in the Graphics: WebRender componentEPSS 0.4%CVE-2024-50264HIGHvsock/virtio: Initialization of the dangling pointer occurring in vsk->transEPSS 0.4%CVE-2023-34475A heap use after free issue was discovered in ImageMagick's ReplaceXmpValue() function in MagickCore/profile.c. An attacker could trick userEPSS 0.4%CVE-2026-27220HIGHAcrobat Reader | Use After Free (CWE-416)EPSS 0.4%CVE-2026-10638MEDIUMUse-after-free in Zephyr ICMPv6 RX path when updating statistics after sending an echo reply or errorEPSS 0.4%CVE-2025-49675HIGHKernel Streaming WOW Thunk Service Driver Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2025-49660HIGHWindows Event Tracing Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2022-41303HIGHA user may be tricked into opening a malicious FBX file which may exploit a use-after-free vulnerability in Autodesk FBX SDK 2020 version caEPSS 0.4%CVE-2026-13805HIGHUse after free in GFX in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML EPSS 0.4%CVE-2026-14178MEDIUMopenGauss存在非法内存访问导致DoS漏洞EPSS 0.4%CVE-2026-13845HIGHUse after free in DOM in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a craEPSS 0.4%CVE-2026-13888HIGHUse after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox viEPSS 0.4%