Fallos del tipo CWE-416
4137 resultadosCVE-2024-38119HIGHWindows Network Address Translation (NAT) Remote Code Execution VulnerabilityEPSS 0.8%CVE-2019-25085MEDIUMGNOME gvdb gvdb-builder.c gvdb_table_write_contents_async use after freeEPSS 0.8%CVE-2022-2859HIGHUse after free in Chrome OS Shell in Google Chrome prior to 104.0.5112.101 allowed a remote attacker who convinced a user to engage in speciEPSS 0.8%CVE-2025-62562HIGHMicrosoft Outlook Remote Code Execution VulnerabilityEPSS 0.8%CVE-2024-23923HIGHAlpine Halo9 prh_l2_sar_data_ind Use-After-Free Remote Code Execution VulnerabilityEPSS 0.8%CVE-2023-38161HIGHWindows GDI Elevation of Privilege VulnerabilityEPSS 0.8%CVE-2023-23420HIGHWindows Kernel Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2024-8376HIGHMemory leakEPSS 0.7%CVE-2025-43222CRITICALA use-after-free issue was addressed by removing the vulnerable code. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS SonomaEPSS 0.7%CVE-2021-38467HIGHAUVESY VersiondogEPSS 0.7%CVE-2023-28287HIGHMicrosoft Publisher Remote Code Execution VulnerabilityEPSS 0.7%CVE-2025-43432MEDIUMA use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.1, iOS 26.1 and iPadOS 26.1, macOS TaEPSS 0.7%CVE-2023-31566HIGHPodofo v0.10.0 was discovered to contain a heap-use-after-free via the component PoDoFo::PdfEncrypt::IsMetadataEncrypted().EPSS 0.7%CVE-2023-52266HIGHehttp 1.0.6 before 17405b9 has an epoll_socket.cpp read_func use-after-free. An attacker can make many connections over a short time to trigEPSS 0.7%CVE-2025-0899HIGHPDF-XChange Editor AcroForm Use-After-Free Remote Code Execution VulnerabilityEPSS 0.7%CVE-2023-0471HIGHUse after free in WebTransport in Google Chrome prior to 109.0.5414.119 allowed a remote attacker to potentially exploit heap corruption viaEPSS 0.7%CVE-2024-49027HIGHMicrosoft Excel Remote Code Execution VulnerabilityEPSS 0.7%CVE-2025-27729HIGHWindows Shell Remote Code Execution VulnerabilityEPSS 0.7%CVE-2024-49021HIGHMicrosoft SQL Server Remote Code Execution VulnerabilityEPSS 0.7%CVE-2023-35942MEDIUMEnvoy's gRPC access log crash caused by the listener drainingEPSS 0.7%