CWE-362

Medium likelihood

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Parent: CWE-662 - Improper Synchronization

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

2,393 vulnerabilities with CWE-362
CVE-2021-30313 MEDIUM
Qualcomm Firmware - Use-After-Free via Race Condition in Wired Connectivity Folder Handling
CVSS 6.7
CVE-2021-43566 LOW
Samba <4.13.16 - Directory Traversal
CVSS 2.5
CVE-2021-37134 HIGH
HarmonyOS < 2.0 - Race Condition in Location-related APIs
CVSS 8.1
CVE-2021-45710 HIGH
Tokio <1.8.4, <1.9.x-1.13.x - Memory Corruption
CVSS 8.1
CVE-2021-45704 HIGH
metrics-util <0.7.0 - Memory Corruption
CVSS 8.1
CVE-2021-44733 HIGH
Linux Kernel < 5.15.11 - Use-After-Free in TEE Shared Memory Handling
CVSS 7.0
CVE-2021-39648 MEDIUM
Android - Local Information Disclosure via Race Condition in configfs.c
CVSS 4.1
CVE-2021-39642 MEDIUM
Android - Local Privilege Escalation via Race Condition in synchronous_process_io_entries
CVSS 6.4
CVE-2021-0955 HIGH
Android 11 - Local Privilege Escalation via Race Condition in FuseDaemon.cpp
CVSS 7.0
CVE-2021-0920 MEDIUM KEV
Linux Kernel < 5.13 - Use-After-Free via Race Condition in unix_scm_to_skb
CVSS 6.4
CVE-2021-43538 MEDIUM
Thunderbird <91.4.0-Firefox <95 - Info Disclosure
CVSS 4.3
CVE-2021-41025 HIGH
FortiWeb 6.0.0-6.0.7, 6.1.0-6.1.2, 6.2.0-6.2.6, 6.3.0-6.3.15, 6.4.0-6.4.1 - Authentication Bypass via Capture-Replay
CVSS 7.3
CVE-2021-37074 HIGH
HarmonyOS < 2.0 - Race Condition Leading to Privilege Escalation
CVSS 8.1
CVE-2021-37069 HIGH
HarmonyOS < 2.0 - Race Condition
CVSS 7.4
CVE-2021-37085 MEDIUM
HarmonyOS < 2.0 - Denial of Service via Encoding Timing Vulnerability
CVSS 5.9
CVE-2021-37082 MEDIUM
HarmonyOS < 2.0 - Race Condition in MotionHub
CVSS 5.9
CVE-2021-37073 LOW
HarmonyOS < 2.0 - Race Condition
CVSS 3.7
CVE-2021-44513 HIGH
tmate-ssh-server < 2.3.0 - Race Condition via Insecure Temporary Directory Creation
CVSS 7.0
CVE-2021-43411 HIGH
GNU Hurd <0.9 - Privilege Escalation
CVSS 7.5
CVE-2021-37991 HIGH
Google Chrome < 95.0.4638.54 - Remote Code Execution via V8 Race Condition
CVSS 7.5
CVE-2021-36181 LOW
FortiPortal <6.0.6 - Use After Free
CVSS 3.1
CVE-2021-36808 MEDIUM
Sophos Secure Workspace < 9.7.3115 - Local Password Bypass via Race Condition
CVSS 5.9
CVE-2021-36994 LOW
Huawei EMUI and Magic UI - Race Condition in Trustlist Management
CVSS 3.7
CVE-2021-36987 MEDIUM
Huawei EMUI and Magic UI - Use-After-Free via Race Condition in Linked List Node Handling
CVSS 5.9
CVE-2021-0870 HIGH
Android 8.1 9 10 11 - Remote Code Execution via Race Condition in RW_SetActivatedTagType
CVSS 8.1
Details
Vulnerabilities 2,393
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits