CWE-362

Medium likelihood

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Parent: CWE-662 - Improper Synchronization

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

2,392 vulnerabilities with CWE-362
CVE-2022-24482 HIGH
Windows ALPC - Privilege Escalation
CVSS 7.0
CVE-2022-22008 HIGH
Windows Hyper-V - Remote Code Execution via Race Condition
CVSS 7.8
CVE-2022-20724 MEDIUM
Cisco CGR1000 Compute Module - Path Traversal
CVSS 5.5
CVE-2022-27481 MEDIUM
SCALANCE W1788 Series < 3.0.0 - Denial of Service via ARP Request Race Condition
CVSS 5.3
CVE-2022-20080 MEDIUM
Android - Local Privilege Escalation via Race Condition in SUB2AF
CVSS 6.4
CVE-2022-20078 MEDIUM
Android - Local Privilege Escalation via Race Condition in vow
CVSS 6.4
CVE-2022-20077 MEDIUM
Android - Local Privilege Escalation via Race Condition in vow
CVSS 6.4
CVE-2022-28796 HIGH
Linux kernel <5.17.1 - Use After Free
CVSS 7.0
CVE-2022-26357 HIGH
Xen 4.11.0-4.11.99 - Race Condition in VT-d Domain ID Cleanup
CVSS 7.0
CVE-2022-24302 MEDIUM
paramiko < 2.10.1 - Information Disclosure via Race Condition in write_private_key_file
CVSS 5.9
CVE-2022-24751 MEDIUM
Zulip <4.11 or >4.0-<5.0-rc1 - Privilege Escalation
CVSS 5.4
CVE-2022-23042 HIGH
Xen Linux PV Device Frontends - Race Condition Leading to Data Leak or Denial of Service
CVSS 7.0
CVE-2022-23041 HIGH
Xen - Race Condition in Linux PV Device Frontends
CVSS 7.0
CVE-2022-23040 HIGH
Xen - Race Condition in PV Device Frontends
CVSS 7.0
CVE-2022-23039 HIGH
Xen - Race Condition in PV Device Frontend Grant Table Handling
CVSS 7.0
CVE-2022-23038 HIGH
Xen - Race Condition in Linux PV Device Frontends
CVSS 7.0
CVE-2022-23037 HIGH
Xen Linux PV Device Frontends - Race Condition in Grant Table Access Removal
CVSS 7.0
CVE-2022-23036 HIGH
Xen - Race Condition in Linux PV Device Frontends
CVSS 7.0
CVE-2022-25822 MEDIUM
Android - Use-After-Free in SDP Driver
CVSS 4.0
CVE-2022-25090 HIGH
Printix < 1.3.1106.0 - Privilege Escalation via Insecure Temporary File Permissions
CVSS 8.1
CVE-2022-24525 HIGH
Microsoft Windows Update Stack - Elevation of Privilege
CVSS 7.0
CVE-2022-24505 HIGH
Windows ALPC - Privilege Escalation
CVSS 7.0
CVE-2022-23283 HIGH
Windows ALPC - Elevation of Privilege via Race Condition
CVSS 7.0
CVE-2022-21975 MEDIUM
Windows Hyper-V - Denial of Service via Race Condition
CVSS 4.7
CVE-2022-24986 HIGH
KDE KCron < 21.12.2 - Unauthorized Command Execution via Temporary File Reuse
CVSS 7.8
Details
Vulnerabilities 2,392
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits