Vulnerabilities > Use After Free

DATE CVE VULNERABILITY TITLE RISK
2022-12-22 CVE-2022-26485 Removing an XSLT parameter during processing could have lead to an exploitable use-after-free.
network
low complexity
CWE-416
8.8
8.8
2022-12-22 CVE-2022-26486 An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escape.
network
low complexity
CWE-416
critical
 9.6
9.6
2022-12-22 CVE-2022-28282 By using a link with <code>rel="localization"</code> a use-after-free could have been triggered by destroying an object during JavaScript execution and then referencing the object through a freed pointer, leading to a potential exploitable crash.
network
low complexity
CWE-416
6.5
6.5
2022-12-22 CVE-2022-31747 Use After Free vulnerability in Mozilla Firefox
Mozilla developers Andrew McCreight, Nicolas B.
network
low complexity
mozilla CWE-416
critical
 9.8
9.8
2022-12-22 CVE-2022-34470 Session history navigations may have led to a use-after-free and potentially exploitable crash.
network
low complexity
CWE-416
critical
 9.8
9.8
2022-12-22 CVE-2022-34484 Use After Free vulnerability in Mozilla Firefox
The Mozilla Fuzzing Team reported potential vulnerabilities present in Thunderbird 91.10.
network
low complexity
mozilla CWE-416
8.8
8.8
2022-12-22 CVE-2022-38476 A data race could occur in the <code>PK11_ChangePW</code> function, potentially leading to a use-after-free vulnerability.
network
high complexity
CWE-416
7.5
7.5
2022-12-22 CVE-2022-40960 Concurrent use of the URL parser with non-UTF-8 data was not thread-safe.
network
low complexity
CWE-416
6.5
6.5
2022-12-22 CVE-2022-45405 Freeing arbitrary <code>nsIInputStream</code>'s on a different thread than creation could have led to a use-after-free and potentially exploitable crash.
network
low complexity
CWE-416
6.5
6.5
2022-12-22 CVE-2022-45406 Use After Free vulnerability in Mozilla Firefox
If an out-of-memory condition occurred when creating a JavaScript global, a JavaScript realm may be deleted while references to it lived on in a BaseShape.
network
low complexity
mozilla CWE-416
critical
 9.8
9.8