Cwe 416

🧬 CWE Related 99
slug: cwe-416

Explanation

CWE-416は「メモリを解放した後にそのメモリを使ってしまう」欠陥です。 C/C++のような手動メモリ管理言語で頻発し、攻撃者はこれを利用して任意のコードを実行できることが多いです。 ブラウザのJavaScriptエンジン (V8, JavaScriptCore) でよく見つかり、ブラウザ経由のゼロデイ攻撃の典型的な原因となります。
📌 Example
Pwn2Own (年次ハッキングコンテスト) で、毎年ブラウザに対するUse-After-Free 攻撃が成功し、賞金10万ドル超を獲得する事例が続いています。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,401

ID Title
CVE-2026-44801 Use-After-Free in microsoft (CVE-2026-44801)
CVE-2026-44808 Vulnerability in microsoft (CVE-2026-44808)
CVE-2026-42991 Vulnerability in microsoft (CVE-2026-42991)
CVE-2026-42986 Use-After-Free in microsoft (CVE-2026-42986)
CVE-2026-44807 Use-After-Free in microsoft (CVE-2026-44807)
CVE-2026-42987 Use-After-Free in microsoft (CVE-2026-42987)
CVE-2026-42984 Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVE-2026-44802 Use-After-Free in microsoft (CVE-2026-44802)
CVE-2026-42985 Use-After-Free in microsoft (CVE-2026-42985)
CVE-2026-42978 Vulnerability in microsoft (CVE-2026-42978)
CVE-2026-42983 Use-After-Free in microsoft (CVE-2026-42983)
CVE-2026-42979 Vulnerability in microsoft (CVE-2026-42979)
CVE-2026-42909 Vulnerability in microsoft (CVE-2026-42909)
CVE-2026-42913 Vulnerability in microsoft (CVE-2026-42913)
CVE-2026-42911 Use-After-Free in microsoft (CVE-2026-42911)
CVE-2026-42905 Use-After-Free in microsoft (CVE-2026-42905)
CVE-2026-42836 Vulnerability in microsoft (CVE-2026-42836)
CVE-2026-34335 Use-After-Free in microsoft (CVE-2026-34335)
CVE-2026-34696 Use-After-Free in adobe (CVE-2026-34696)
CVE-2026-48583 Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVE-2026-48563 Use-After-Free in microsoft (CVE-2026-48563)
CVE-2026-47653 Use-After-Free in microsoft (CVE-2026-47653)
CVE-2026-47654 Use-After-Free in microsoft (CVE-2026-47654)
CVE-2026-47293 Use-After-Free in microsoft (CVE-2026-47293)
CVE-2026-45657 Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network.
CVE-2026-45653 Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVE-2026-45640 Use-After-Free in microsoft (CVE-2026-45640)
CVE-2026-45605 Use-After-Free in microsoft (CVE-2026-45605)
CVE-2026-45603 Vulnerability in microsoft (CVE-2026-45603)
CVE-2026-45596 Vulnerability in microsoft (CVE-2026-45596)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →