Vulnerabilities > Use After Free

DATE CVE VULNERABILITY TITLE RISK
2021-07-14 CVE-2021-0587 USE After Free vulnerability in Google Android
In StreamOut::prepareForWriting of StreamOut.cpp, there is a possible out of bounds write due to a use after free.
local
low complexity
google CWE-416
7.2
2021-07-13 CVE-2021-1940 USE After Free vulnerability in Qualcomm products
Use after free can occur due to improper handling of response from firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
local
low complexity
qualcomm CWE-416
7.2
2021-07-09 CVE-2021-27037 USE After Free vulnerability in Autodesk Design Review
A maliciously crafted PNG, PDF or DWF file in Autodesk 2018, 2017, 2013, 2012, 2011 can be used to attempt to free an object that has already been freed while parsing them.
network
autodesk CWE-416
6.8
2021-07-08 CVE-2021-21779 USE After Free vulnerability in Webkitgtk 2.30.4
A use-after-free vulnerability exists in the way Webkit’s GraphicsContext handles certain events in WebKitGTK 2.30.4.
network
webkitgtk CWE-416
6.8
2021-07-08 CVE-2021-21806 USE After Free vulnerability in Webkitgtk 2.30.3
An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64.
network
webkitgtk CWE-416
6.8
2021-07-07 CVE-2021-21775 USE After Free vulnerability in Webkitgtk 2.30.4
A use-after-free vulnerability exists in the way certain events are processed for ImageLoader objects of Webkit WebKitGTK 2.30.4.
network
webkitgtk CWE-416
6.8
2021-07-02 CVE-2021-36144 USE After Free vulnerability in Linux Acrn
The polling timer handler in ACRN before 2.5 has a use-after-free for a freed virtio device, related to devicemodel/hw/pci/virtio/*.c.
network
low complexity
linux CWE-416
5.0
2021-07-02 CVE-2021-36145 USE After Free vulnerability in Linux Acrn
The Device Model in ACRN through 2.5 has a devicemodel/core/mem.c use-after-free for a freed rb_entry.
network
low complexity
linux CWE-416
5.0
2021-07-02 CVE-2021-30554 USE After Free vulnerability in Google Chrome
Use after free in WebGL in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
google CWE-416
6.8
2021-07-02 CVE-2021-30555 USE After Free vulnerability in Google Chrome
Use after free in Sharing in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page and user gesture.
network
google CWE-416
6.8