Sign in Sign up
JA · EN · FR
SecPulse

Cwe 416

🧬 CWE Related 99
slug: cwe-416

Explanation

CWE-416は「メモリを解放した後にそのメモリを使ってしまう」欠陥です。 C/C++のような手動メモリ管理言語で頻発し、攻撃者はこれを利用して任意のコードを実行できることが多いです。 ブラウザのJavaScriptエンジン (V8, JavaScriptCore) でよく見つかり、ブラウザ経由のゼロデイ攻撃の典型的な原因となります。
📌 Example
Pwn2Own (年次ハッキングコンテスト) で、毎年ブラウザに対するUse-After-Free 攻撃が成功し、賞金10万ドル超を獲得する事例が続いています。
🔗 Related links

🔖 Related tags

Cwe 20125 Cwe 78120 Cwe 787105 Cwe 2296 Cwe 11990 Cwe 9484 Cwe 50270 Cwe 7966 Cwe 8954 Cwe 91844 Cwe 28443 Cwe 28741 Cwe 7740 Cwe 30638 Cwe 84337

🛡 Vulnerabilities tagged with this 100

ID Title
CVE-2026-8092 Out-of-Bounds Read in CVE-2026-8092 (CVE-2026-8092)
CVE-2026-8090 Use-After-Free in mozilla (CVE-2026-8090)
CVE-2026-43111 Use-After-Free in linux (CVE-2026-43111)
CVE-2026-43027 Use-After-Free in linux (CVE-2026-43027)
CVE-2026-43019 Use-After-Free in linux (CVE-2026-43019)
CVE-2026-43018 Use-After-Free in linux (CVE-2026-43018)
CVE-2026-31758 Use-After-Free in linux (CVE-2026-31758)
CVE-2026-31731 Use-After-Free in linux (CVE-2026-31731)
CVE-2020-9715 KEV [KEV] Use-After-Free in Adobe acrobat (CVE-2020-9715)
CVE-2026-34757 Use-After-Free in CVE-2026-34757 (CVE-2026-34757)
CVE-2026-5281 KEV [KEV] Use-After-Free in Google dawn (CVE-2026-5281)
CVE-2023-43000 KEV [KEV] Use-After-Free in Apple multiple-products (CVE-2023-43000)
CVE-2023-41974 KEV [KEV] Use-After-Free in Apple ios-and-ipados (CVE-2023-41974)
CVE-2026-2441 KEV [KEV] Use-After-Free in Google chromium (CVE-2026-2441)
CVE-2025-43529 KEV [KEV] Use-After-Free in Apple multiple-products (CVE-2025-43529)
CVE-2025-62221 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-62221)
CVE-2025-27038 KEV [KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2025-27038)
CVE-2025-32709 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-32709)
CVE-2025-32701 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-32701)
CVE-2025-30400 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-30400)
CVE-2025-29824 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-29824)
CVE-2025-24983 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-24983)
CVE-2025-24085 KEV [KEV] Use-After-Free in Apple multiple-products (CVE-2025-24085)
CVE-2025-21334 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-21334)
CVE-2025-21335 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-21335)
CVE-2024-9680 KEV [KEV] Use-After-Free in Mozilla firefox (CVE-2024-9680)
CVE-2024-43047 KEV [KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2024-43047)
CVE-2024-38193 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2024-38193)
CVE-2024-38107 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2024-38107)
CVE-2024-36971 KEV [KEV] Use-After-Free in Android kernel (CVE-2024-36971)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →