CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   

Security Vulnerabilities Related To CWE-415

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2023-27320 415 2023-02-28 2023-03-24
0.0
None ??? ??? ??? ??? ??? ???
Sudo before 1.9.13p2 has a double free in the per-command chroot feature.
2 CVE-2023-26545 415 2023-02-25 2023-03-16
0.0
None ??? ??? ??? ??? ??? ???
In the Linux kernel before 6.1.13, there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sysctl table under a new location) during the renaming of a device.
3 CVE-2023-25801 415 2023-03-25 2023-03-27
0.0
None ??? ??? ??? ??? ??? ???
TensorFlow is an open source machine learning platform. Prior to versions 2.12.0 and 2.11.1, `nn_ops.fractional_avg_pool_v2` and `nn_ops.fractional_max_pool_v2` require the first and fourth elements of their parameter `pooling_ratio` to be equal to 1.0, as pooling on batch and channel dimensions is not supported. A fix is included in TensorFlow 2.12.0 and 2.11.1.
4 CVE-2023-25136 415 Exec Code 2023-02-03 2023-03-09
0.0
None ??? ??? ??? ??? ??? ???
OpenSSH server (sshd) 9.1 introduced a double-free vulnerability during options.kex_algorithms handling. This is fixed in OpenSSH 9.2. The double free can be leveraged, by an unauthenticated remote attacker in the default configuration, to jump to any location in the sshd address space. One third-party report states "remote code execution is theoretically possible."
5 CVE-2023-1449 415 2023-03-17 2023-03-23
0.0
None ??? ??? ??? ??? ??? ???
A vulnerability has been found in GPAC 2.3-DEV-rev35-gbbca86917-master and classified as problematic. This vulnerability affects the function gf_av1_reset_state of the file media_tools/av_parsers.c. The manipulation leads to double free. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. VDB-223294 is the identifier assigned to this vulnerability.
6 CVE-2022-47975 415 2023-01-06 2023-02-09
0.0
None ??? ??? ??? ??? ??? ???
The DUBAI module has a double free vulnerability. Successful exploitation of this vulnerability may affect system availability.
7 CVE-2022-42915 415 2022-10-29 2023-03-01
0.0
None ??? ??? ??? ??? ??? ???
curl before 7.86.0 has a double free. If curl is told to use an HTTP proxy for a transfer with a non-HTTP(S) URL, it sets up the connection to the remote server by issuing a CONNECT request to the proxy, and then tunnels the rest of the protocol through. An HTTP proxy might refuse this request (HTTP proxies often only allow outgoing connections to specific port numbers, like 443 for HTTPS) and instead return a non-200 status code to the client. Due to flaws in the error/cleanup handling, this could trigger a double free in curl if one of the following schemes were used in the URL for the transfer: dict, gopher, gophers, ldap, ldaps, rtmp, rtmps, or telnet. The earliest affected version is 7.77.0.
8 CVE-2022-40683 415 Exec Code 2023-02-16 2023-02-27
0.0
None ??? ??? ??? ??? ??? ???
A double free in Fortinet FortiWeb version 7.0.0 through 7.0.3 may allows attacker to execute unauthorized code or commands via specially crafted commands
9 CVE-2022-40515 415 Mem. Corr. 2023-03-10 2023-03-16
0.0
None ??? ??? ??? ??? ??? ???
Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms.
10 CVE-2022-39170 415 2022-09-02 2022-09-29
0.0
None ??? ??? ??? ??? ??? ???
libdwarf 0.4.1 has a double free in _dwarf_exec_frame_instr in dwarf_frame.c.
11 CVE-2022-39002 415 2022-09-16 2022-11-03
0.0
None ??? ??? ??? ??? ??? ???
Double free vulnerability in the storage module. Successful exploitation of this vulnerability will cause the memory to be freed twice.
12 CVE-2022-36234 415 2022-07-28 2022-08-04
0.0
None ??? ??? ??? ??? ??? ???
SimpleNetwork TCP Server commit 29bc615f0d9910eb2f59aa8dff1f54f0e3af4496 was discovered to contain a double free vulnerability which is exploited via crafted TCP packets.
13 CVE-2022-36043 415 Exec Code 2022-09-06 2022-09-27
0.0
None ??? ??? ??? ??? ??? ???
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to a double free in bobj.c:rz_bin_reloc_storage_free() when freeing relocations generated from qnx binary plugin. A user opening a malicious qnx binary could be affected by this vulnerability, allowing an attacker to execute code on the user's machine. Commit number a3d50c1ea185f3f642f2d8180715f82d98840784 contains a patch for this issue.
14 CVE-2022-34495 415 2022-06-26 2022-07-08
4.9
None Local Low Not required None None Complete
rpmsg_probe in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4 has a double free.
15 CVE-2022-34494 415 2022-06-26 2022-07-08
4.9
None Local Low Not required None None Complete
rpmsg_virtio_add_ctrl_dev in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4 has a double free.
16 CVE-2022-33033 415 2022-06-23 2022-06-29
6.8
None Remote Medium Not required Partial Partial Partial
LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwg_read_file at dwg.c.
17 CVE-2022-32962 415 Exec Code 2022-07-20 2022-08-02
0.0
None ??? ??? ??? ??? ??? ???
HiCOS’ client-side citizen certificate component has a double free vulnerability. An unauthenticated physical attacker can exploit this vulnerability to corrupt memory and execute arbitrary code, manipulate system data or terminate service.
18 CVE-2022-32614 415 Mem. Corr. 2022-11-08 2022-11-10
0.0
None ??? ??? ??? ??? ??? ???
In audio, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310571; Issue ID: ALPS07310571.
19 CVE-2022-32574 415 Mem. Corr. 2022-10-25 2022-10-26
0.0
None ??? ??? ??? ??? ??? ???
A double-free vulnerability exists in the web interface /action/ipcamSetParamPost functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to memory corruption. An attacker can make an authenticated HTTP request to trigger this vulnerability.
20 CVE-2022-31614 415 DoS Exec Code 2022-08-05 2022-08-10
0.0
None ??? ??? ??? ??? ??? ???
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin) where it may double-free some resources. An attacker may exploit this vulnerability with other vulnerabilities to cause denial of service, code execution, and information disclosure.
21 CVE-2022-31291 415 2022-06-16 2023-02-03
5.0
None Remote Low Not required None None Partial
An issue in dlt_config_file_parser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets.
22 CVE-2022-31117 415 2022-07-05 2022-11-05
4.3
None Remote Medium Not required None None Partial
UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. In versions prior to 5.4.0 an error occurring while reallocating a buffer for string decoding can cause the buffer to get freed twice. Due to how UltraJSON uses the internal decoder, this double free is impossible to trigger from Python. This issue has been resolved in version 5.4.0 and all users should upgrade to UltraJSON 5.4.0. There are no known workarounds for this issue.
23 CVE-2022-29156 415 2022-04-13 2022-10-18
7.2
None Local Low Not required Complete Complete Complete
drivers/infiniband/ulp/rtrs/rtrs-clt.c in the Linux kernel before 5.16.12 has a double free related to rtrs_clt_dev_release.
24 CVE-2022-29032 415 Exec Code 2022-05-20 2022-05-26
6.8
None Remote Medium Not required Partial Partial Partial
A vulnerability has been identified in JT2Go (All versions < V13.3.0.3), Teamcenter Visualization V13.3 (All versions < V13.3.0.3), Teamcenter Visualization V14.0 (All versions < V14.0.0.1). The CGM_NIST_Loader.dll library contains a double free vulnerability while parsing specially crafted CGM files. An attacker could leverage this vulnerability to execute code in the context of the current process.
25 CVE-2022-28738 415 2022-05-09 2022-11-29
7.5
None Remote Low Not required Partial Partial Partial
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
26 CVE-2022-28390 415 2022-04-03 2023-02-01
4.6
None Local Low Not required Partial Partial Partial
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.
27 CVE-2022-28389 415 2022-04-03 2023-01-03
2.1
None Local Low Not required None None Partial
mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a double free.
28 CVE-2022-28388 415 2022-04-03 2023-01-03
2.1
None Local Low Not required None None Partial
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free.
29 CVE-2022-27864 415 Exec Code 2022-07-29 2022-08-08
0.0
None ??? ??? ??? ??? ??? ???
A Double Free vulnerability allows remote attackers to execute arbitrary code through DesignReview.exe application on PDF files within affected installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
30 CVE-2022-27416 415 2022-04-12 2022-10-28
5.1
None Remote High Not required Partial Partial Partial
Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free.
31 CVE-2022-25796 415 Exec Code 2022-04-11 2022-04-19
6.8
None Remote Medium Not required Partial Partial Partial
A Double Free vulnerability allows remote malicious actors to execute arbitrary code on DWF file in Autodesk Navisworks 2022 within affected installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
32 CVE-2022-25750 415 Mem. Corr. 2022-10-19 2022-10-20
0.0
None ??? ??? ??? ??? ??? ???
Memory corruption in BTHOST due to double free while music playback and calls over bluetooth headset in Snapdragon Mobile
33 CVE-2022-25717 415 Mem. Corr. 2023-01-09 2023-01-13
0.0
None ??? ??? ??? ??? ??? ???
Memory corruption in display due to double free while allocating frame buffer memory
34 CVE-2022-25668 415 Mem. Corr. 2022-09-02 2022-09-08
0.0
None ??? ??? ??? ??? ??? ???
Memory corruption in video driver due to double free while parsing ASF clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
35 CVE-2022-25660 415 Mem. Corr. 2022-10-19 2022-10-21
0.0
None ??? ??? ??? ??? ??? ???
Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
36 CVE-2022-23459 415 Mem. Corr. 2022-08-19 2022-08-23
0.0
None ??? ??? ??? ??? ??? ???
Jsonxx or Json++ is a JSON parser, writer and reader written in C++. In affected versions of jsonxx use of the Value class may lead to memory corruption via a double free or via a use after free. The value class has a default assignment operator which may be used with pointer types which may point to alterable data where the pointer itself is not updated. This issue exists on the current commit of the jsonxx project. The project itself has been archived and updates are not expected. Users are advised to find a replacement.
37 CVE-2022-23012 415 2022-01-25 2022-02-01
7.1
None Remote Medium Not required None None Complete
On BIG-IP versions 15.1.x before 15.1.4.1 and 14.1.x before 14.1.4.5, when the HTTP/2 profile is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
38 CVE-2022-22103 415 Mem. Corr. 2022-06-14 2022-06-22
7.2
None Local Low Not required Complete Complete Complete
Memory corruption in multimedia driver due to double free while processing data from user in Snapdragon Auto
39 CVE-2022-22086 415 Mem. Corr. 2022-06-14 2022-06-22
10.0
None Remote Low Not required Complete Complete Complete
Memory corruption in video due to double free while parsing 3gp clip with invalid meta data atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
40 CVE-2022-21758 415 Mem. Corr. 2022-06-06 2022-06-13
4.6
None Local Low Not required Partial Partial Partial
In ccu, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06439600; Issue ID: ALPS06439600.
41 CVE-2022-20803 415 DoS 2023-02-17 2023-02-28
0.0
None ??? ??? ??? ??? ??? ???
A vulnerability in the OLE2 file parser of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a double-free. An attacker could exploit this vulnerability by submitting a crafted OLE2 file to be scanned by ClamAV on the affected device. An exploit could allow the attacker to cause the ClamAV scanning process to crash, resulting in a denial of service condition.
42 CVE-2022-4450 415 DoS 2023-02-08 2023-02-24
0.0
None ??? ??? ??? ??? ??? ???
The function PEM_read_bio_ex() reads a PEM file from a BIO and parses and decodes the "name" (e.g. "CERTIFICATE"), any header data and the payload data. If the function succeeds then the "name_out", "header" and "data" arguments are populated with pointers to buffers containing the relevant decoded data. The caller is responsible for freeing those buffers. It is possible to construct a PEM file that results in 0 bytes of payload data. In this case PEM_read_bio_ex() will return a failure code but will populate the header argument with a pointer to a buffer that has already been freed. If the caller also frees this buffer then a double free will occur. This will most likely lead to a crash. This could be exploited by an attacker who has the ability to supply malicious PEM files for parsing to achieve a denial of service attack. The functions PEM_read_bio() and PEM_read() are simple wrappers around PEM_read_bio_ex() and therefore these functions are also directly affected. These functions are also called indirectly by a number of other OpenSSL functions including PEM_X509_INFO_read_bio_ex() and SSL_CTX_use_serverinfo_file() which are also vulnerable. Some OpenSSL internal uses of these functions are not vulnerable because the caller does not free the header argument if PEM_read_bio_ex() returns a failure code. These locations include the PEM_read_bio_TYPE() functions as well as the decoders introduced in OpenSSL 3.0. The OpenSSL asn1parse command line application is also impacted by this issue.
43 CVE-2022-3806 415 2023-01-25 2023-02-02
0.0
None ??? ??? ??? ??? ??? ???
Inconsistent handling of error cases in bluetooth hci may lead to a double free condition of a network buffer.
44 CVE-2022-3707 415 2023-03-06 2023-03-14
0.0
None ??? ??? ??? ??? ??? ???
A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers VGA card system resource overload, causing a fail in the intel_gvt_dma_map_guest_page function. This issue could allow a local user to crash the system.
45 CVE-2022-3595 415 2022-10-18 2022-10-20
0.0
None ??? ??? ??? ??? ??? ???
A vulnerability was found in Linux Kernel. It has been rated as problematic. Affected by this issue is the function sess_free_buffer of the file fs/cifs/sess.c of the component CIFS Handler. The manipulation leads to double free. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211364.
46 CVE-2022-3238 415 2022-11-14 2022-11-17
0.0
None ??? ??? ??? ??? ??? ???
A double-free flaw was found in the Linux kernel’s NTFS3 subsystem in how a user triggers remount and umount simultaneously. This flaw allows a local user to crash or potentially escalate their privileges on the system.
47 CVE-2022-2519 415 2022-08-31 2023-02-23
0.0
None ??? ??? ??? ??? ??? ???
There is a double free or corruption in rotateImage() at tiffcrop.c:8839 found in libtiff 4.4.0rc1
48 CVE-2022-2509 415 2022-08-01 2022-08-19
0.0
None ??? ??? ??? ??? ??? ???
A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.
49 CVE-2022-2327 415 2022-07-22 2023-02-03
0.0
None ??? ??? ??? ??? ??? ???
io_uring use work_flags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing IORING_OP. Some operations are missing some types, which can lead to incorrect reference counts which can then lead to a double free. We recommend upgrading the kernel past commit df3f3bb5059d20ef094d6b2f0256c4bf4127a859
50 CVE-2022-2008 415 2022-07-28 2022-10-27
0.0
None ??? ??? ??? ??? ??? ???
Double free in WebGL in Google Chrome prior to 102.0.5005.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Total number of vulnerabilities : 388   Page : 1 (This Page)2 3 4 5 6 7 8
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.