Vulnerabilities > Use After Free

DATE CVE VULNERABILITY TITLE RISK
2017-06-20 CVE-2017-3081 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability during internal computation caused by multiple display object mask manipulations.
network
low complexity
adobe CWE-416
critical
9.8
2017-06-20 CVE-2017-3075 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability when manipulating the ActionsScript 2 XML class.
network
low complexity
adobe CWE-416
critical
9.8
2017-06-19 CVE-2017-9762 Use After Free vulnerability in Radare Radare2 1.5.0
The cmd_info function in libr/core/cmd_info.c in radare2 1.5.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted binary file.
local
low complexity
radare CWE-416
5.5
2017-06-13 CVE-2017-7371 Use After Free vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a data pointer is potentially used after it has been freed when SLIMbus is turned off by Bluetooth.
local
low complexity
google CWE-416
7.8
2017-06-13 CVE-2017-7370 Use After Free vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a race condition exists in a video driver potentially leading to a use-after-free condition.
local
high complexity
google CWE-416
7.0
2017-06-11 CVE-2017-9527 Use After Free vulnerability in multiple products
The mark_context_stack function in gc.c in mruby through 1.2.0 allows attackers to cause a denial of service (heap-based use-after-free and application crash) or possibly have unspecified other impact via a crafted .rb file.
local
low complexity
mruby debian CWE-416
7.8
2017-06-09 CVE-2016-7835 Use After Free vulnerability in multiple products
Use-after-free vulnerability in H2O allows remote attackers to cause a denial-of-service (DoS) or obtain server certificate private keys and possibly other information.
network
low complexity
h2o-project dena CWE-416
critical
9.1
2017-06-08 CVE-2016-4473 Use After Free vulnerability in multiple products
/ext/phar/phar_object.c in PHP 7.0.7 and 5.6.x allows remote attackers to execute arbitrary code.
network
low complexity
php suse CWE-416
critical
9.8
2017-06-08 CVE-2017-9520 Use After Free vulnerability in Radare Radare2 1.5.0
The r_config_set function in libr/config/config.c in radare2 1.5.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted DEX file.
local
low complexity
radare CWE-416
5.5
2017-06-06 CVE-2014-9946 Use After Free vulnerability in Google Android
In Core Kernel in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist.
local
low complexity
google CWE-416
7.8