CWE-667

Improper Locking

Parent: CWE-662 - Improper Synchronization

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

688 vulnerabilities with CWE-667
CVE-2023-33951 MEDIUM
Linux Kernel < 6.3.9 - Information Disclosure via vmwgfx Driver Race Condition
CVSS 6.7
CVE-2023-32258 HIGH
Linux Kernel >=5.15 <5.15.145 - Remote Code Execution via SMB2_LOGOFF and SMB2_CLOSE Command Processing
CVSS 8.1
CVE-2023-32257 HIGH
Linux Kernel >=5.15 <5.15.145 - Remote Code Execution via SMB2 Session Handling Race Condition
CVSS 8.1
CVE-2023-2430 MEDIUM
Linux Kernel < 6.2 - Denial of Service via Missing Lock in io_cqring_event_overflow
CVSS 5.5
CVE-2023-0160 MEDIUM
Linux Kernel < 6.4 - Denial of Service via BPF Subsystem Deadlock
CVSS 4.7
CVE-2023-21400 MEDIUM
Android - Kernel Memory Corruption due to Improper Locking in io_uring
CVSS 6.7
CVE-2023-21189 HIGH
Android 13 - Local Privilege Escalation via Lock Task Mode Bypass
CVSS 7.3
CVE-2023-3436 LOW
Xpdf 4.04 - Denial of Service via PDF Object Stream Length Field Deadlock
CVSS 3.3
CVE-2023-21120 HIGH
Android - Use-After-Free in cdm_engine.cpp
CVSS 7.8
CVE-2023-20746 MEDIUM
iot-yocto - Local Privilege Escalation via Improper Locking in vcu
CVSS 6.7
CVE-2023-20745 MEDIUM
iot-yocto - Local Privilege Escalation via Improper Locking
CVSS 6.7
CVE-2023-20743 MEDIUM
IoT-Yocto - Local Privilege Escalation via Improper Locking in VCU
CVSS 6.7
CVE-2023-20737 MEDIUM
iot-yocto - Use-After-Free via Improper Locking
CVSS 6.7
CVE-2023-20733 MEDIUM
iot-yocto - Use-After-Free via Improper Locking
CVSS 6.7
CVE-2023-2612 MEDIUM
Ubuntu Linux - Denial of Service via shiftfs Inode Locking Race Condition
CVSS 4.4
CVE-2023-22318 HIGH
Tribe29 Checkmk Appliance <1.6.5 - DoS
CVSS 7.5
CVE-2023-2269 MEDIUM
Linux Kernel - Denial of Service via Recursive Locking in Device Mapper-Multipathing
CVSS 4.4
CVE-2023-2007 HIGH
Linux Kernel < 6.0 - Time-of-check Time-of-use Race Condition in DPT I2O Controller Driver
CVSS 7.8
CVE-2023-21000 HIGH
Android 13 - Use-After-Free in MediaCodec.cpp
CVSS 7.8
CVE-2023-20939 HIGH
Android - Use-After-Free in looper_backed_event_loop.cpp
CVSS 7.8
CVE-2023-20619 MEDIUM
Android - Memory Corruption due to Improper Locking in vcu
CVSS 6.7
CVE-2023-20618 MEDIUM
Android - Memory Corruption due to Improper Locking in VCU
CVSS 6.7
CVE-2023-20928 HIGH
Android - Use-After-Free in Binder VMA Management
CVSS 7.8
CVE-2023-22412 HIGH
Juniper Junos OS 20.4-22.1 - Unauthenticated Denial of Service via SIP ALG Message Processing
CVSS 7.5
CVE-2022-50549 MEDIUM
Linux Kernel 3.6-6.1.3 - DoS via ABBA Deadlock in dm thin
CVSS 5.5
Details
Vulnerabilities 688
Links
MITRE CWE Entry Search this CWE With Exploits