Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-415 (双重释放) — Vulnerability Class 182

182 vulnerabilities classified as CWE-415 (双重释放). AI Chinese analysis included.

CWE-415 represents a critical memory management weakness where a software product erroneously invokes the free function on the same memory address twice. This flaw typically arises from improper pointer handling or logic errors in deallocation sequences, leading to undefined behavior that attackers can exploit to achieve arbitrary code execution or cause denial-of-service conditions. By corrupting the heap’s internal metadata, a double free allows adversaries to manipulate memory allocation structures, potentially overwriting critical data or hijacking control flow. To prevent this vulnerability, developers must ensure that pointers are set to NULL immediately after being freed, thereby preventing subsequent deallocation attempts. Additionally, implementing robust memory management practices, such as using smart pointers in C++ or employing static analysis tools to detect duplicate free calls, significantly reduces the risk of this dangerous error occurring in production environments.

MITRE CWE Description
The product calls free() twice on the same memory address.
Common Consequences (1)
Integrity, Confidentiality, AvailabilityModify Memory, Execute Unauthorized Code or Commands
When a program calls free() twice with the same argument, the program's memory management data structures may become corrupted, potentially leading to the reading or modification of unexpected memory addresses. This corruption can cause the program to crash or, in some circumstances, cause two later…
Mitigations (3)
Architecture and DesignChoose a language that provides automatic memory management.
ImplementationEnsure that each allocation is freed only once. After freeing a chunk, set the pointer to NULL to ensure the pointer cannot be freed again. In complicated error conditions, be sure that clean-up routines respect the state of allocation properly. If the language is object oriented, ensure that object destructors delete each chunk of memory only once.
ImplementationUse a static analysis tool to find double free instances.
Examples (2)
The following code shows a simple example of a double free vulnerability.
char* ptr = (char*)malloc (SIZE); ... if (abrt) { free(ptr); } ... free(ptr);
Bad · C
While contrived, this code should be exploitable on Linux distributions that do not ship with heap-chunk check summing turned on.
#include <stdio.h> #include <unistd.h> #define BUFSIZE1 512 #define BUFSIZE2 ((BUFSIZE1/2) - 8) int main(int argc, char **argv) { char *buf1R1; char *buf2R1; char *buf1R2; buf1R1 = (char *) malloc(BUFSIZE2); buf2R1 = (char *) malloc(BUFSIZE2); free(buf1R1); free(buf2R1); buf1R2 = (char *) malloc(BUFSIZE1); strncpy(buf1R2, argv[1], BUFSIZE1-1); free(buf2R1); free(buf1R2); }
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2025-62219 Microsoft Wireless Provisioning System Elevation of Privilege Vulnerability — Windows 10 Version 1607 7.0 High2025-11-11
CVE-2025-59505 Windows Smart Card Reader Elevation of Privilege Vulnerability — Windows 10 Version 1607 7.8 High2025-11-11
CVE-2025-61990 TMM vulnerability — BIG-IP 7.5 High2025-10-15
CVE-2025-59289 Windows Bluetooth Service Elevation of Privilege Vulnerability — Windows 10 Version 21H2 7.0 High2025-10-14
CVE-2025-23282 NVIDIA Display Driver for Linux 资源管理错误漏洞 — Virtual GPU Manager 7.0 High2025-10-10
CVE-2025-47316 Double Free in Video — Snapdragon 7.8 High2025-09-24
CVE-2025-53948 Santesoft Sante PACS Server Double Free — Sante PACS Server 7.5 High2025-08-18
CVE-2025-20134 Cisco Adaptive Security Appliance and Firepower Threat Defense Software SSL/TLS Certificate Denial of Service Vulnerability — Cisco Adaptive Security Appliance (ASA) Software 8.6 High2025-08-14
CVE-2023-45584 Fortinet多款产品 资源管理错误漏洞 — FortiProxy 6.3 Medium2025-08-12
CVE-2025-55158 Vim double-free vulnerability during Vim9 script import operations — vim 7.8AIHighAI2025-08-11
CVE-2025-23322 NVIDIA Triton Inference Server 资源管理错误漏洞 — Triton Inference Server 7.5 High2025-08-06
CVE-2025-8585 libav DSS File Demuxer avconv.c main double free — libav 5.3 Medium2025-08-05
CVE-2025-8058 GNU C Library 安全漏洞 — glibc 9.8 -2025-07-23
CVE-2025-32988 Gnutls: vulnerability in gnutls othername san export 6.5 Medium2025-07-10
CVE-2025-49693 Microsoft Brokering File System Elevation of Privilege Vulnerability — Windows 11 version 22H2 7.8 High2025-07-08
CVE-2025-49667 Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability — Windows 10 Version 1507 7.8 High2025-07-08
CVE-2025-47975 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability — Windows 10 Version 1507 7.0 High2025-07-08
CVE-2025-49688 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability — Windows Server 2012 R2 8.8 High2025-07-08
CVE-2025-27051 Double Free in Windows WLAN Host — Snapdragon 7.8 High2025-07-08
CVE-2025-27046 Double Free in Display — Snapdragon 7.8 High2025-07-08
CVE-2025-21432 Double Free in SPS-HLOS — Snapdragon 7.8 High2025-07-08
CVE-2025-5351 Libssh: double free vulnerability in libssh key export functions — libssh 6.5 Medium2025-07-04
CVE-2025-5100 KL-001-2025-005: Mobile Dynamix PrinterShare Mobile Print Double-Free Memory Write — PrinterShare Mobile Print 8.4AIHighAI2025-05-23
CVE-2025-4574 Crossbeam-channel: crossbeam-channel vulnerable to double free on drop 6.5 Medium2025-05-13
CVE-2025-2925 HDF5 H5MM.c H5MM_realloc double free — HDF5 3.3 Low2025-03-28
CVE-2025-2027 ASUS System Control Interface 安全漏洞 — ASCI 7.1 -2025-03-28
CVE-2024-53698 QTS, QuTS hero — QTS 5.5 -2025-03-07
CVE-2025-21201 Windows Telephony Server Remote Code Execution Vulnerability — Windows 10 Version 1507 8.8 High2025-02-11
CVE-2025-21183 Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability — Windows 11 Version 24H2 7.4 High2025-02-11
CVE-2025-21182 Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability — Windows 11 Version 24H2 7.4 High2025-02-11

Vulnerabilities classified as CWE-415 (双重释放) represent 182 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.