Vulnerabilities > Use After Free

DATE CVE VULNERABILITY TITLE RISK
2018-04-03 CVE-2018-5825 Use After Free vulnerability in Google Android
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in the kernel IPA driver, a Use After Free condition can occur.
local
low complexity
google CWE-416
7.8
2018-04-03 CVE-2018-3599 Use After Free vulnerability in Google Android
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while notifying a DCI client, a Use After Free condition can occur.
network
low complexity
google CWE-416
critical
9.8
2018-04-03 CVE-2018-3584 Use After Free vulnerability in Google Android
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, a Use After Free condition can occur in the function rmnet_usb_ctrl_init().
network
low complexity
google CWE-416
7.5
2018-04-03 CVE-2017-11075 Use After Free vulnerability in Google Android
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, if cmd_pkt and reg_pkt are called from different userspace threads, a use after free condition can potentially occur in wdsp_glink_write().
local
low complexity
google CWE-416
7.8
2018-04-03 CVE-2018-0493 Use After Free vulnerability in multiple products
remctld in remctl before 3.14, when an attacker is authorized to execute a command that uses the sudo option, has a use-after-free that leads to a daemon crash, memory corruption, or arbitrary command execution.
network
low complexity
eyrie debian CWE-416
7.2
2018-03-30 CVE-2017-14881 Use After Free vulnerability in Google Android
While calling the IPA IOCTL handler for IPA_IOC_ADD_HDR_PROC_CTX in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-13, a use-after-free condition may potentially occur.
network
low complexity
google CWE-416
critical
9.8
2018-03-30 CVE-2017-14877 Use After Free vulnerability in Google Android
While the IPA driver in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-08-31 is processing IOCTL commands there is no mutex lock of allocated memory.
network
low complexity
google CWE-416
critical
9.8
2018-03-30 CVE-2017-14915 Use After Free vulnerability in Qualcomm products
In Android before 2018-01-05 on Qualcomm Snapdragon Mobile SD 625, SD 650/52, SD 835, accessing SPCOM functions with a compromised client structure can result in a Use After Free condition.
network
low complexity
qualcomm CWE-416
critical
9.8
2018-03-28 CVE-2018-0170 Use After Free vulnerability in Cisco IOS XE 16.4.1
A vulnerability in the Cisco Umbrella Integration feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition, related to the OpenDNS software.
network
low complexity
cisco CWE-416
7.5
2018-03-25 CVE-2018-9009 Use After Free vulnerability in multiple products
In libming 0.4.8, there is a use-after-free in the decompileJUMP function of the decompile.c file.
network
low complexity
libming debian CWE-416
8.8