CWE-362

Medium likelihood

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Parent: CWE-662 - Improper Synchronization

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

2,400 vulnerabilities with CWE-362
CVE-2016-2546 MEDIUM
Linux Kernel < 4.4 - Denial of Service via Race Condition in sound/core/timer.c
CVSS 5.1
CVE-2016-2545 MEDIUM
Linux Kernel < 4.4 - Denial of Service via Race Condition in snd_timer_interrupt
CVSS 5.1
CVE-2016-2544 MEDIUM
Linux Kernel < 4.4 - Denial of Service via Race Condition in seq_queue.c
CVSS 5.1
CVE-2016-2069 HIGH
Linux Kernel < 4.4 - Race Condition in TLB Paging Structure Access
CVSS 7.4
CVE-2016-0848 HIGH
Android <4.4.4, <5.0.2, <5.1.1, <2016-04-01 - Privilege Escalation
CVSS 8.4
CVE-2016-1267 MEDIUM
Juniper Junos OS < various - Info Disclosure
CVSS 6.7
CVE-2016-1757 HIGH
Apple iOS <9.3 & OS X <10.11.4 - RCE
CVSS 7.0
CVE-2016-1975 MEDIUM
Mozilla Firefox <45.0 - Memory Corruption
CVSS 6.3
CVE-2016-0723 MEDIUM
Linux kernel <4.4.1 - Info Disclosure/DoS
CVSS 6.8
CVE-2016-0858 HIGH
Advantech WebAccess < 8.0 - Remote Code Execution via Race Condition
CVSS 8.1
CVE-2015-10067 MEDIUM
SSharpSmartThreadPool - Race Condition
CVSS 4.6
CVE-2015-7335 HIGH
Lenovo System Update < 5.07.0008 - Privilege Escalation via Race Condition
CVSS 7.0
CVE-2015-1340 HIGH
LXD <0.19-0ubuntu5 - Privilege Escalation
CVSS 7.0
CVE-2015-9157 CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - Buffer Overflow via Widevine Dash Command Handler Race Condition
CVSS 9.8
CVE-2015-9016 HIGH
Android Kernel - Use-After-Free via Race Condition in blk_mq_tag_to_rq
CVSS 7.0
CVE-2015-6569 MEDIUM
Atlassian Floodlight < 1.2 - Denial of Service via LoadBalancer Module Race Condition
CVSS 5.9
CVE-2015-1862 HIGH
abrt < 2.2.0 - Local Privilege Escalation via Race Condition in Crash Reporting
CVSS 7.0
CVE-2015-8239 HIGH
sudo - Race Condition in SHA-2 Digest Handling
CVSS 7.0
CVE-2015-1865 MEDIUM
coreutils 8.4 - Arbitrary File Deletion via Race Condition in fts.c
CVSS 5.1
CVE-2015-7553 MEDIUM
Red Hat Enterprise Linux 7, kernel-rt and Red Hat Enterprise MRG 2 ...
CVSS 4.7
CVE-2015-5948 HIGH
SuiteCRM < 7.2.2 - Remote Code Execution via Race Condition
CVSS 8.1
CVE-2015-5947 HIGH
SuiteCRM < 7.2.2 - Remote Code Execution via Race Condition
CVSS 8.1
CVE-2015-1325 HIGH
Apport <2.17.2-0ubuntu1.1, <2.14.70ubuntu8.5, <2.14.1-0ubuntu3.11, ...
CVSS 7.0
CVE-2015-7891 HIGH
Samsung Graphics 2D driver - Memory Corruption
CVSS 7.0
CVE-2015-5191 MEDIUM
VMware Tools < 10.0.9 - Local Privilege Escalation via Hard-Coded /tmp Path Race Condition
CVSS 6.7
Details
Vulnerabilities 2,400
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits