Cwe 416

🧬 CWE Related 99
slug: cwe-416

Explanation

CWE-416は「メモリを解放した後にそのメモリを使ってしまう」欠陥です。 C/C++のような手動メモリ管理言語で頻発し、攻撃者はこれを利用して任意のコードを実行できることが多いです。 ブラウザのJavaScriptエンジン (V8, JavaScriptCore) でよく見つかり、ブラウザ経由のゼロデイ攻撃の典型的な原因となります。
📌 Example
Pwn2Own (年次ハッキングコンテスト) で、毎年ブラウザに対するUse-After-Free 攻撃が成功し、賞金10万ドル超を獲得する事例が続いています。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,423

ID Title
CVE-2025-39776 Use-After-Free in linux (CVE-2025-39776)
CVE-2025-39689 Use-After-Free in linux (CVE-2025-39689)
CVE-2025-39691 Use-After-Free in linux (CVE-2025-39691)
CVE-2025-38724 Use-After-Free in linux (CVE-2025-38724)
CVE-2025-38708 Use-After-Free in linux (CVE-2025-38708)
CVE-2024-58240 Use-After-Free in linux (CVE-2024-58240)
CVE-2025-38627 Use-After-Free in c (CVE-2025-38627)
CVE-2025-38584 Use-After-Free in linux (CVE-2025-38584)
CVE-2025-38500 Use-After-Free in c (CVE-2025-38500)
CVE-2025-38471 Use-After-Free in c (CVE-2025-38471)
CVE-2025-4878 Use-After-Free in CVE-2025-4878 (CVE-2025-4878)
CVE-2025-38350 Use-After-Free in linux (CVE-2025-38350)
CVE-2025-38250 Use-After-Free in c (CVE-2025-38250)
CVE-2025-49695 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-38236 Use-After-Free in c (CVE-2025-38236)
CVE-2025-38212 Use-After-Free in linux (CVE-2025-38212)
CVE-2025-38129 Use-After-Free in c (CVE-2025-38129)
CVE-2025-47164 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-27038 KEV [KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2025-27038)
CVE-2025-48798 Use-After-Free in CVE-2025-48798 (CVE-2025-48798)
CVE-2025-30386 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-32709 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-32709)
CVE-2025-32701 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-32701)
CVE-2025-30400 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-30400)
CVE-2025-3416 Use-After-Free in CVE-2025-3416 (CVE-2025-3416)
CVE-2025-26687 Use-After-Free in microsoft (CVE-2025-26687)
CVE-2025-29824 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-29824)
CVE-2025-31115 Vulnerability in CVE-2025-31115 (CVE-2025-31115)
CVE-2023-52927 Use-After-Free in linux (CVE-2023-52927)
CVE-2025-21858 Use-After-Free in c (CVE-2025-21858)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →