Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-362

CWE-362

Medium likelihood

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Parent: CWE-662 - Improper Synchronization

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

2,400 vulnerabilities with CWE-362

Zope < 2.13.19 and Plone < 4.2.3 - Remote Password Exposure via Timing Attack

SUSE Linux Enterprise for SAP Applications 11 SP2 - Info Disclosure

Cisco Adaptive Security Appliance - Denial of Service via Hash Lookup Race Condition

Automatic Bug Reporting Tool < 2.0.9 - Privilege Escalation via Symlink Attack

ProFTPD < 1.3.5rc1 - Race Condition via MKD/XMKD Symlink Attack

Linux Kernel <3.4.16 - Info Disclosure

Google Chrome < 23.0.1271.64 - Denial of Service via Pepper Buffer Race Condition

Safari < 6.0.1 - Remote Code Execution via JavaScript Array Race Condition

Google Chrome < 22.0.1229.92 - Remote Code Execution via Audio Device Race Condition

Linux Kernel < 3.4.5 - Denial of Service via Race Condition in madvise_remove

CVE-2012-3552 MEDIUM

Linux Kernel < 3.0 - Denial of Service via Race Condition in IP Socket Options Handling

devscripts < 2.12.2 - Arbitrary File Modification via Symlink Attack on Temporary Files

Google Chrome <22.0.1229.79 - DoS

Google Chrome <21.0.1180.89 - DoS

Tunnelblick < 3.3beta20 - Local Process Termination via PID Race Condition

Tunnelblick < 3.3beta20 - Local Privilege Escalation via Race Condition in runScript

Linux kernel < 3.4.5 - Denial of Service via PMD Race Condition

GNU Automake < 1.11.6 and 1.12.x < 1.12.2 - Local Race Condition via World-Writable Extraction Directory

Cisco IOS 15.0-15.1 on Catalyst 3560/3750 - Authenticated DoS via Rapid Local Web Auth

ISC BIND 9.9.x - Denial of Service via TCP Query Race Condition

AccountsService <0.6.22 - Info Disclosure

systemd - Unauthenticated Arbitrary File Deletion via Symlink Attack in rm_rf_children

Cisco ACE <A4(2.3) & A5(1.1) - Privilege Escalation

Windows XP SP3 - Local Privilege Escalation via Win32k.sys Thread Creation Race Condition

Apple Mac OS X 10.7.x <10.7.4 - Privilege Escalation

Previous Page 88 of 96 Next

Details

Vulnerabilities 2,400

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy