Cwe 416

🧬 CWE Related 99
slug: cwe-416

Explanation

CWE-416は「メモリを解放した後にそのメモリを使ってしまう」欠陥です。 C/C++のような手動メモリ管理言語で頻発し、攻撃者はこれを利用して任意のコードを実行できることが多いです。 ブラウザのJavaScriptエンジン (V8, JavaScriptCore) でよく見つかり、ブラウザ経由のゼロデイ攻撃の典型的な原因となります。
📌 Example
Pwn2Own (年次ハッキングコンテスト) で、毎年ブラウザに対するUse-After-Free 攻撃が成功し、賞金10万ドル超を獲得する事例が続いています。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,423

ID Title
CVE-2025-69627 Use-After-Free in gonitro (CVE-2025-69627)
CVE-2026-31426 Use-After-Free in c (CVE-2026-31426)
CVE-2026-31419 Use-After-Free in c (CVE-2026-31419)
CVE-2020-9715 KEV [KEV] Use-After-Free in Adobe acrobat (CVE-2020-9715)
CVE-2026-6068 Use-After-Free in nasm (CVE-2026-6068)
CVE-2026-34734 Use-After-Free in hdfgroup (CVE-2026-34734)
CVE-2026-34757 Use-After-Free in libpng (CVE-2026-34757)
CVE-2026-5883 Use-After-Free in google (CVE-2026-5883)
CVE-2026-5860 Use-After-Free in google (CVE-2026-5860)
CVE-2026-28387 Use-After-Free in openssl (CVE-2026-28387)
CVE-2026-31408 Use-After-Free in linux (CVE-2026-31408)
CVE-2026-34774 Use-After-Free in electronjs (CVE-2026-34774)
CVE-2026-34771 Use-After-Free in electronjs (CVE-2026-34771)
CVE-2026-31389 Use-After-Free in linux (CVE-2026-31389)
CVE-2026-23461 Use-After-Free in linux (CVE-2026-23461)
CVE-2026-23462 Use-After-Free in c (CVE-2026-23462)
CVE-2026-31399 Use-After-Free in linux (CVE-2026-31399)
CVE-2026-31396 Use-After-Free in c (CVE-2026-31396)
CVE-2026-23458 Use-After-Free in linux (CVE-2026-23458)
CVE-2026-23450 Use-After-Free in linux (CVE-2026-23450)
CVE-2026-23454 Use-After-Free in linux (CVE-2026-23454)
CVE-2026-23401 Use-After-Free in c (CVE-2026-23401)
CVE-2026-5273 Use-After-Free in google (CVE-2026-5273)
CVE-2026-5281 KEV [KEV] Use-After-Free in Google dawn (CVE-2026-5281)
CVE-2026-33526 Use-After-Free in dos (CVE-2026-33526)
CVE-2026-32748 Vulnerability in dos (CVE-2026-32748)
CVE-2026-23306 Use-After-Free in Kernel (CVE-2026-23306)
CVE-2026-23281 Use-After-Free in linux (CVE-2026-23281)
CVE-2026-28857 Out-of-Bounds Read in apple (CVE-2026-28857)
CVE-2026-28859 Out-of-Bounds Read in apple (CVE-2026-28859)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →