Vulnerabilities > Use After Free
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-06 | CVE-2022-48511 | Use After Free vulnerability in Huawei Emui and Harmonyos Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions. | 9.8 |
| 2023-07-06 | CVE-2022-48512 | Use After Free vulnerability in Huawei Emui and Harmonyos Use After Free (UAF) vulnerability in the Vdecoderservice service. | 9.8 |
| 2023-07-05 | CVE-2023-31248 | Use After Free vulnerability in multiple products Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain was active and CAP_NET_ADMIN is in any user or network namespace | 7.8 |
| 2023-07-05 | CVE-2023-37209 | Use After Free vulnerability in Mozilla Firefox A use-after-free condition existed in `NotifyOnHistoryReload` where a `LoadingSessionHistoryEntry` object was freed and a reference to that object remained. | 8.8 |
| 2023-07-05 | CVE-2023-37201 | Use After Free vulnerability in multiple products An attacker could have triggered a use-after-free condition when creating a WebRTC connection over HTTPS. | 8.8 |
| 2023-07-05 | CVE-2023-37202 | Use After Free vulnerability in multiple products Cross-compartment wrappers wrapping a scripted proxy could have caused objects from other compartments to be stored in the main compartment resulting in a use-after-free. | 8.8 |
| 2023-07-04 | CVE-2023-21672 | Use After Free vulnerability in Qualcomm products Memory corruption in Audio while running concurrent tunnel playback or during concurrent audio tunnel recording sessions. | 7.8 |
| 2023-06-28 | CVE-2023-3390 | Use After Free vulnerability in multiple products A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with NFT_MSG_NEWRULE makes it possible to use a dangling pointer in the same transaction causing a use-after-free vulnerability. | 7.8 |
| 2023-06-28 | CVE-2023-3439 | Use After Free vulnerability in Linux Kernel A flaw was found in the MCTP protocol in the Linux kernel. | 4.7 |
| 2023-06-28 | CVE-2023-3389 | Use After Free vulnerability in multiple products A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59 (4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and 0e388fce7aec40992eadee654193cad345d62663 for 5.15 stable). | 7.8 |