CWE-362

Medium likelihood

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Parent: CWE-662 - Improper Synchronization

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

2,392 vulnerabilities with CWE-362
CVE-2022-42832 MEDIUM
iPadOS < 16.0 - Race Condition
CVSS 6.4
CVE-2022-42831 MEDIUM
iPadOS < 16.0 - Race Condition Leading to Privilege Escalation
CVSS 6.4
CVE-2022-42806 HIGH
iPadOS < 16.0 - Race Condition Leading to Arbitrary Code Execution
CVSS 7.0
CVE-2022-42803 HIGH
iPadOS < 15.7.1 - Race Condition Leading to Arbitrary Code Execution
CVSS 7.0
CVE-2022-42791 HIGH
iPhone OS < 16.0 and macOS < 13.0 - Race Condition Leading to Arbitrary Code Execution with Kernel Privileges
CVSS 7.0
CVE-2022-3307 HIGH
Google Chrome <106.0.5249.62 - Use After Free
CVSS 8.8
CVE-2022-32895 MEDIUM
macOS < 13.0 - Race Condition in File System Protection
CVSS 4.7
CVE-2022-44034 MEDIUM
Linux kernel <6.0.6 - Use After Free
CVSS 6.4
CVE-2022-44033 MEDIUM
Linux kernel <6.0.6 - Use After Free
CVSS 6.4
CVE-2022-44032 MEDIUM
Linux kernel <6.0.6 - Use After Free
CVSS 6.4
CVE-2022-3635 MEDIUM
Linux Kernel 2.6.12-4.9.325 - Use-After-Free in IPsec tst_timer Function
CVSS 5.5
CVE-2022-3623 MEDIUM
Linux Kernel 5.1-5.4.228 - Race Condition in BPF follow_page_pte Function
CVSS 5.0
CVE-2022-27626 CRITICAL
Synology DiskStation Manager < 7.1.1-42962-2 - Remote Code Execution via OOB Management Session Race Condition
CVSS 10.0
CVE-2022-22208 MEDIUM
Juniper Networks Junos OS/Junos OS Evolved - Use After Free
CVSS 5.9
CVE-2022-3567 MEDIUM
Linux Kernel - Race Condition in IPv6 Handler
CVSS 4.6
CVE-2022-3566 MEDIUM
Linux Kernel - Race Condition in TCP Handler via tcp_getsockopt/tcp_setsockopt
CVSS 4.6
CVE-2022-3564 MEDIUM
Linux Kernel 3.6-4.9.332 - Use-After-Free in Bluetooth L2CAP SDU Reassembly
CVSS 5.5
CVE-2022-3521 LOW
Linux Kernel < 5.19 - Race Condition in kcm_tx_work
CVSS 2.6
CVE-2022-41035 MEDIUM
Microsoft Edge Chromium < 106.0.1370.34 - Spoofing via Race Condition
CVSS 5.3
CVE-2022-38047 HIGH
Windows Point-to-Point Tunneling Protocol - RCE
CVSS 8.1
CVE-2022-38029 HIGH
Windows ALPC - Privilege Escalation
CVSS 7.0
CVE-2022-38027 HIGH
Windows Storage - Privilege Escalation
CVSS 7.0
CVE-2022-38021 HIGH
Windows 10/11, Server 2012-2022 Elevation of Privilege via Telemetry Race Condition
CVSS 7.0
CVE-2022-38000 HIGH
Windows Point-to-Point Tunneling Protocol - Remote Code Execution
CVSS 8.1
CVE-2022-33634 HIGH
Windows Point-to-Point Tunneling Protocol - RCE
CVSS 8.1
Details
Vulnerabilities 2,392
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits