CWE-362

Medium likelihood

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Parent: CWE-662 - Improper Synchronization

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

2,398 vulnerabilities with CWE-362
CVE-2017-6296 HIGH
NVIDIA Shield TV Firmware < 6.2 - Denial of Service or Privilege Escalation via TOCTOU in DRM Application
CVSS 7.0
CVE-2017-14798 HIGH
PostgreSQL - Privilege Escalation via Race Condition in Init Script
CVSS 7.3
CVE-2017-18203 MEDIUM
Linux Kernel < 4.14.3 - Denial of Service via Race Condition in dm_get_from_kobject
CVSS 4.7
CVE-2017-15829 HIGH
Android - Use-After-Free via GPU Driver Race Condition
CVSS 7.0
CVE-2017-1000503 HIGH
Jenkins 2.81-2.94 and 2.89.1 - Race Condition during Initialization
CVSS 8.1
CVE-2017-7326 HIGH
Yandex Browser <17.4.0.16 - Memory Corruption
CVSS 7.5
CVE-2017-3158 HIGH
Apache Guacamole 0.9.5-0.9.10-incubating - Buffer Overflow via Terminal Emulator Race Condition
CVSS 8.1
CVE-2017-13183 HIGH
Android 8.1 - Use-After-Free via OMXNodeInstance::useBuffer and IOMX::freeBuffer Race Condition
CVSS 7.0
CVE-2017-15847 HIGH
Android - Race Condition in SPCom Kernel Driver
CVSS 7.0
CVE-2017-15129 MEDIUM
Linux Kernel < 4.14.11 - Use-After-Free in Network Namespace Handling
CVSS 4.7
CVE-2017-18018 HIGH
GNU Coreutils < 8.29 - Race Condition via Symlink Replacement during Recursive Ownership Change
CVSS 7.1
CVE-2017-6167 HIGH
F5 BIG-IP 12.1.0-12.1.2, 13.0.0 - Race Condition in iControl REST
CVSS 7.5
CVE-2017-17712 HIGH
Linux Kernel 3.19-4.1.52 - Local Privilege Escalation via Race Condition in raw_sendmsg
CVSS 7.0
CVE-2017-14902 HIGH
Android for MSM - Use-After-Free via GLink Kernel Driver Race Condition
CVSS 7.0
CVE-2017-9718 HIGH
Android for MSM - Buffer Overflow via Multimedia Driver Race Condition
CVSS 7.0
CVE-2017-9708 HIGH
Android for MSM - Race Condition in Camera Driver via msm_ois_power_down Function
CVSS 7.0
CVE-2017-9703 HIGH
Android for MSM - Use-After-Free via Camera Driver Race Condition
CVSS 7.0
CVE-2017-11049 HIGH
Android for MSM - Buffer Overflow via Video Driver Race Condition
CVSS 7.0
CVE-2017-11045 HIGH
Android for MSM - Use-After-Free via Camera Driver Race Condition
CVSS 7.0
CVE-2017-11044 HIGH
Android for MSM - Use-After-Free via KGSL Driver Race Condition
CVSS 7.0
CVE-2017-16857 HIGH
Bitbucket Auto-Unapprove - Auth Bypass
CVSS 8.5
CVE-2017-15357 HIGH
Arq < 5.9.7 - Local Privilege Escalation via Symlink Attack on Updater Binary
CVSS 7.4
CVE-2017-1000405 HIGH
Linux Kernel <4.14 - Privilege Escalation
CVSS 7.0
CVE-2017-8148 MEDIUM
Huawei P9 Firmware < EVA-AL10C00B389 - Denial of Service via Audio Driver Race Condition
CVSS 4.7
CVE-2017-8279 HIGH
Android for MSM - Race Condition in Message Mask Table Update
CVSS 7.5
Details
Vulnerabilities 2,398
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits