Vulnerabilities > Double Free

DATE CVE VULNERABILITY TITLE RISK
2018-10-01 CVE-2018-4000 Double Free vulnerability in Atlantiswordprocessor Atlantis Word Processor 3.2.5.0
An exploitable double-free vulnerability exists in the Office Open XML parser of Atlantis Word Processor, version 3.2.5.0.
local
low complexity
atlantiswordprocessor CWE-415
7.8
2018-10-01 CVE-2018-17825 Double Free vulnerability in multiple products
An issue was discovered in AdPlug 2.3.1.
network
low complexity
adplug-project fedoraproject CWE-415
critical
9.8
2018-09-20 CVE-2018-11982 Double Free vulnerability in Qualcomm products
In Snapdragon (Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 835, Snapdragon_High_Med_2016, a double free of ASN1 heap memory used for EUTRA CAP container occurs during UTRAN to LTE Capability inquiry procedure.
low complexity
qualcomm CWE-415
8.8
2018-09-18 CVE-2018-11840 Double Free vulnerability in Google Android
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing the WLAN driver command ioctl a temporary buffer used to construct the reply message may be freed twice.
local
low complexity
google CWE-415
7.8
2018-09-18 CVE-2018-11276 Double Free vulnerability in Google Android
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, double free of memory allocation is possible in Kernel when it explicitly tries to free that memory on driver probe failure, since memory allocated is automatically freed on probe.
local
low complexity
google CWE-415
7.8
2018-09-18 CVE-2018-11273 Double Free vulnerability in Google Android
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, 'voice_svc_dev' is allocated as a device-managed resource.
local
low complexity
google CWE-415
7.8
2018-09-18 CVE-2018-11270 Double Free vulnerability in Google Android
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, memory allocated with devm_kzalloc is automatically released by the kernel if the probe function fails with an error code.
local
low complexity
google CWE-415
7.8
2018-09-16 CVE-2018-17097 Double Free vulnerability in Surina Soundtouch 2.0.0
The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (double free) or possibly have unspecified other impact, as demonstrated by SoundStretch.
network
low complexity
surina CWE-415
8.8
2018-09-14 CVE-2018-14638 Double Free vulnerability in multiple products
A flaw was found in 389-ds-base before version 1.3.8.4-13.
network
low complexity
fedoraproject redhat CWE-415
7.5
2018-09-04 CVE-2018-16425 Double Free vulnerability in Opensc Project Opensc
A double free when handling responses from an HSM Card in sc_pkcs15emu_sc_hsm_init in libopensc/pkcs15-sc-hsm.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact.
low complexity
opensc-project CWE-415
6.6