Vulnerabilities (CVE)

CWE filter

CWE-416

Filter

1122 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-8956 2 Canonical, Linux 2 Ubuntu Linux, Linux Kernel 2019-06-15 7.2
In the Linux Kernel before versions 4.20.8 and 4.19.21 a use-after-free error in the "sctp_sendmsg()" function (net/sctp/socket.c) when handling SCTP_SENDALL flag can be exploited to corrupt memory.
CVE-2019-7221 7 Fedoraproject, Linux, Opensuse and 4 more 16 Fedora, Linux Kernel, Leap and 13 more 2019-06-15 4.6
The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free.
CVE-2019-7845 1 Adobe 1 Flash Player 2019-06-13 6.8
Adobe Flash Player versions 32.0.0.192 and earlier, 32.0.0.192 and earlier, and 32.0.0.192 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2019-0196 3 Apache, Canonical, Debian 3 Http Server, Ubuntu Linux, Debian Linux 2019-06-13 5.0
A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the...
CVE-2019-2095 1 Google 1 Android 2019-06-11 7.6
In callGenIDChangeListeners and related functions of SkPixelRef.cpp, there is a possible use after free due to a race condition. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed...
CVE-2018-20355 1 Cesanta 1 Mongoose 2019-06-11 7.5
An invalid write of 8 bytes due to a use-after-free vulnerability in the mg_http_free_proto_data_cgi function call in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or...
CVE-2018-20356 1 Cesanta 1 Mongoose 2019-06-11 7.5
An invalid read of 8 bytes due to a use-after-free vulnerability in the mg_http_free_proto_data_cgi function call in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or...
CVE-2018-20352 1 Cesanta 1 Mongoose Embedded Web Server Library 2019-06-11 6.8
Use-after-free vulnerability in the mg_cgi_ev_handler function in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or remote code execution.
CVE-2018-20354 1 Cesanta 1 Mongoose 2019-06-11 7.5
An invalid read of 8 bytes due to a use-after-free vulnerability during a "return" in the mg_http_get_proto_data function in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application...
CVE-2018-20353 1 Cesanta 1 Mongoose 2019-06-11 7.5
An invalid read of 8 bytes due to a use-after-free vulnerability during a "NULL test" in the mg_http_get_proto_data function in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application...
CVE-2018-19452 1 Foxitsoftware 1 Foxit Pdf Sdk Activex 2019-06-10 6.8
A use after free in the TextBox field Mouse Enter action in IReader_ContentProvider can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031. An attacker can leverage this to gain remote code execution....
CVE-2019-5525 1 Vmware 1 Workstation 2019-06-10 7.2
VMware Workstation (15.x before 15.1.0) contains a use-after-free vulnerability in the Advanced Linux Sound Architecture (ALSA) backend. A malicious user with normal user privileges on the guest machine may exploit this issue in conjunction with...
CVE-2019-7317 3 Libpng, Canonical, Debian 3 Libpng, Ubuntu Linux, Debian Linux 2019-06-10 2.6
png_image_free in png.c in libpng 1.6.36 has a use-after-free because png_image_free_function is called under png_safe_execute.
CVE-2019-5214 2019-06-10 7.1
There is a use after free vulnerability on certain driver component in Huawei Mate10 smartphones versions earlier than ALP-AL00B 9.0.0.167(C00E85R2P20T8). An attacker tricks the user into installing a malicious application, which make the...
CVE-2019-6766 1 Foxitsoftware 2 Foxit Reader, Phantompdf 2019-06-05 4.3
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.4.1.16828. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...
CVE-2019-6770 1 Foxitsoftware 2 Foxit Reader, Phantompdf 2019-06-05 4.3
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.4.1.16828. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...
CVE-2019-6763 1 Foxitsoftware 2 Foxit Reader, Phantompdf 2019-06-05 6.8
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.4.1.16828. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...
CVE-2019-6762 1 Foxitsoftware 2 Foxit Reader, Phantompdf 2019-06-05 6.8
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit PhantomPDF 9.4.1.16828. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...
CVE-2019-6769 1 Foxitsoftware 2 Foxit Reader, Phantompdf 2019-06-05 6.8
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.4.1.16828. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...
CVE-2019-6768 1 Foxitsoftware 2 Foxit Reader, Phantompdf 2019-06-05 6.8
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.4.1.16828. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...