Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-362

CWE-362

Medium likelihood

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Parent: CWE-662 - Improper Synchronization

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

2,398 vulnerabilities with CWE-362

CVE-2017-11025 HIGH

Android for MSM - Memory Corruption via Race Condition in audio_effects_shared_ioctl()

CVE-2017-2898 HIGH

Circle with Disney Firmware - Arbitrary Code Execution via Firmware Update Signature Verification Race Condition

CVE-2017-16001 HIGH

HashiCorp Vagrant VMware Fusion Plugin 5.0.1 - Local Privilege Escalation via Update Process Race Condition

CVE-2017-15884 HIGH

HashiCorp Vagrant VMware Fusion 5.0.0 - Local Privilege Escalation via Plugin Update Race Condition

CVE-2017-5068 HIGH

Google Chrome <58.0.3029.96 - Remote Code Execution

CVE-2017-5061 MEDIUM

Google Chrome <58.0.3029.81 - Info Disclosure

CVE-2017-7115 HIGH

iPhone OS < 10.3.3 and tvOS < 10.2.2 - Remote Code Execution or Denial of Service via Wi-Fi Race Condition

CVE-2017-15649 HIGH

Linux Kernel < 4.13.6 - Use-After-Free via Packet Fanout Race Condition

CVE-2017-15588 HIGH

Xen through 4.9.x - Race Condition Leading to Arbitrary Code Execution via Stale TLB Entry

CVE-2017-15265 HIGH

Linux Kernel < 4.13.8 - Use-After-Free via ALSA Subsystem ioctl Calls

CVE-2017-11823 MEDIUM

Microsoft Windows <10.0 - Privilege Escalation

CVE-2017-9697 HIGH

Android - Use-After-Free via Race Condition in diag_dbgfs_read_table

CVE-2017-15038 MEDIUM

QEMU < 2.9.1 - Information Disclosure via v9fs_xattrwalk Race Condition

CVE-2017-15037 HIGH

FreeBSD < 11.1 - Out-of-bounds Read via smb_strdupin Race Condition

CVE-2017-1000112 HIGH

Linux Kernel UDP Fragmentation Offset (UFO) Privilege Escalation

CVE-2017-14955 MEDIUM

Checkmk - Information Disclosure

CVE-2017-14748 MEDIUM

Blizzard Overwatch 1.15.0.2 - Authenticated Denial of Service via Competitive Match Loading Race Condition

CVE-2017-1346 LOW

IBM Business Process Manager <8.6 - Info Disclosure

CVE-2017-9677 HIGH

Android < 8.0 - Buffer Overflow via Race Condition in msm_compr_ioctl_shared

CVE-2017-9676 MEDIUM

Android < 8.0 - Exposure of Sensitive Information via Race Condition

CVE-2017-8281 MEDIUM

Android < 8.0 - Use-After-Free in DCI Event Status Query

CVE-2017-8280 HIGH

Android < 8.0 - Memory Corruption via WLAN Calibration Data Race Condition

CVE-2017-14483 MEDIUM

Gentoo dev-python/flower <0.9.1-r1 - Privilege Escalation

CVE-2017-0161 HIGH

Windows NetBT Session Services - Remote Code Execution via Race Condition

CVE-2017-14317 MEDIUM

Xen < 4.9.0 - Denial of Service via cxenstored Double-Free Race Condition

Previous Page 75 of 96 Next

Details

Vulnerabilities 2,398

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy