Vulnerabilities > Use After Free

DATE CVE VULNERABILITY TITLE RISK
2017-06-27 CVE-2017-2491 Use After Free vulnerability in Apple Iphone OS
Use after free vulnerability in the String.replace method JavaScriptCore in Apple Safari in iOS before 10.3 allows remote attackers to execute arbitrary code via a crafted web page, or a crafted file.
network
low complexity
apple CWE-416
8.8
2017-06-27 CVE-2016-0959 Use After Free vulnerability in Adobe products
Use after free vulnerability in Adobe Flash Player Desktop Runtime before 20.0.0.267, Adobe Flash Player Extended Support Release before 18.0.0.324, Adobe Flash Player for Google Chrome before 20.0.0.267, Adobe Flash Player for Microsoft Edge and Internet Explorer 11 before 20.0.0.267, Adobe Flash Player for Internet Explorer 10 and 11 before 20.0.0.267, Adobe Flash Player for Linux before 11.2.202.559, AIR Desktop Runtime before 20.0.0.233, AIR SDK before 20.0.0.233, AIR SDK & Compiler before 20.0.0.233, AIR for Android before 20.0.0.233.
network
low complexity
adobe CWE-416
critical
9.8
2017-06-26 CVE-2017-9953 Use After Free vulnerability in multiple products
There is an invalid free in Image::printIFDStructure that leads to a Segmentation fault in Exiv2 0.26.
network
low complexity
exiv2 redhat CWE-416
7.5
2017-06-20 CVE-2017-3084 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability in the advertising metadata functionality.
network
low complexity
adobe CWE-416
critical
9.8
2017-06-20 CVE-2017-3083 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability in the Primetime SDK functionality related to the profile metadata of the media stream.
network
low complexity
adobe CWE-416
critical
9.8
2017-06-20 CVE-2017-3081 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability during internal computation caused by multiple display object mask manipulations.
network
low complexity
adobe CWE-416
critical
9.8
2017-06-20 CVE-2017-3075 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability when manipulating the ActionsScript 2 XML class.
network
low complexity
adobe CWE-416
critical
9.8
2017-06-19 CVE-2017-9762 Use After Free vulnerability in Radare Radare2 1.5.0
The cmd_info function in libr/core/cmd_info.c in radare2 1.5.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted binary file.
local
low complexity
radare CWE-416
5.5
2017-06-13 CVE-2017-7371 Use After Free vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a data pointer is potentially used after it has been freed when SLIMbus is turned off by Bluetooth.
local
low complexity
google CWE-416
7.8
2017-06-13 CVE-2017-7370 Use After Free vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a race condition exists in a video driver potentially leading to a use-after-free condition.
local
high complexity
google CWE-416
7.0