CWE-362

Medium likelihood

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Parent: CWE-662 - Improper Synchronization

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

2,391 vulnerabilities with CWE-362
CVE-2023-1285 HIGH
Mitsubishi Electric GC-ENET-COM Firmware - Unauthenticated Denial of Service via UDP Packet Flood
CVSS 7.5
CVE-2023-28308 MEDIUM
Windows Server 2008, 2012, 2016, 2019, 2022 - Remote Code Execution via DNS Server Race Condition
CVSS 6.6
CVE-2023-28307 MEDIUM
Windows Server 2008, 2012, 2016, 2019, 2022 - Remote Code Execution via DNS Server Race Condition
CVSS 6.6
CVE-2023-28306 MEDIUM
Windows Server 2008, 2012, 2016, 2019, 2022 - Remote Code Execution via DNS Server Race Condition
CVSS 6.6
CVE-2023-28305 MEDIUM
Windows Server 2008, 2012, 2016, 2019, 2022 - Remote Code Execution via DNS Server Race Condition
CVSS 6.6
CVE-2023-28278 MEDIUM
Windows Server 2008, 2012, 2016, 2019, 2022 - Remote Code Execution via DNS Server Race Condition
CVSS 6.6
CVE-2023-28273 HIGH
Windows 10/11, Server 2016-2022 Elevation of Privilege via Clip Service Race Condition
CVSS 7.0
CVE-2023-28232 HIGH
Windows 10 1507-22H2 and Windows 11 21H2-22H2 - Remote Code Execution via Point-to-Point Tunneling Protocol
CVSS 7.5
CVE-2023-20687 MEDIUM
Android - Local Privilege Escalation via Race Condition in Display DRM
CVSS 6.4
CVE-2023-20686 MEDIUM
Android - Local Privilege Escalation via Race Condition in Display DRM
CVSS 6.4
CVE-2023-20685 MEDIUM
Android - Use-After-Free via Race Condition in vdec
CVSS 6.4
CVE-2023-20684 MEDIUM
Android - Use-After-Free via Race Condition in vdec
CVSS 6.4
CVE-2023-1582 MEDIUM
Linux Kernel - Denial of Service via Race Condition in fs/proc/task_mmu.c
CVSS 4.7
CVE-2023-21031 MEDIUM
Android 13 - Out-of-bounds Read in HWC2.cpp setPowerMode
CVSS 4.7
CVE-2023-28144 HIGH
KDAB Hotspot 1.3.0-1.4.1 - Privilege Escalation via Symlink Race Condition
CVSS 7.0
CVE-2023-24861 HIGH
Windows Graphics Component - Privilege Escalation
CVSS 7.0
CVE-2023-23407 HIGH
Windows 10 1507-22H2 and Windows 11 21H2-22H2 - Remote Code Execution via PPPoE Race Condition
CVSS 7.1
CVE-2023-23404 HIGH
Windows 10 1507-22H2 and Windows 11 21H2-22H2 - Remote Code Execution via PPTP Race Condition
CVSS 8.1
CVE-2023-23393 HIGH
Windows BrokerInfrastructure Service - Elevation of Privilege via Race Condition
CVSS 7.0
CVE-2023-23039 MEDIUM
Linux Kernel < 6.2.0 - Use-After-Free via Race Condition in vcc_open() and vcc_remove()
CVSS 5.7
CVE-2023-0739 MEDIUM
answer < 1.0.4 - Race Condition
CVSS 6.8
CVE-2023-24042 HIGH
LightFTP < 2.2 - Path Traversal via Race Condition in FTP Request Handler
CVSS 7.5
CVE-2023-22499 HIGH
Deno 1.9.0-1.29.2 - Race Condition in Interactive Permission Prompt
CVSS 7.5
CVE-2023-21771 HIGH
Windows Local Session Manager LSM - Privilege Escalation
CVSS 7.0
CVE-2023-21766 MEDIUM
Windows Overlay Filter - Info Disclosure
CVSS 4.7
Details
Vulnerabilities 2,391
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits