CWE-667

Improper Locking

Parent: CWE-662 - Improper Synchronization

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

688 vulnerabilities with CWE-667
CVE-2022-20422 HIGH
Android - Local Privilege Escalation via Race Condition in emulation_proc_handler
CVSS 7.0
CVE-2022-26473 MEDIUM
Android - Use-After-Free in vdec fmt due to Improper Locking
CVSS 6.7
CVE-2022-26452 MEDIUM
Android - Use-After-Free in ISP due to Improper Locking
CVSS 6.7
CVE-2022-3303 MEDIUM
Linux Kernel < 6.0 - Denial of Service via SNDCTL_DSP_SYNC Ioctl Race Condition
CVSS 4.7
CVE-2022-26451 MEDIUM
Android - Use-After-Free via Improper Locking in ged
CVSS 6.7
CVE-2022-3028 HIGH
Linux Kernel 3.14-4.9.326 - Race Condition in XFRM Subsystem via xfrm_probe_algs
CVSS 7.0
CVE-2022-38791 MEDIUM
MariaDB 10.3.0-10.3.35 - Denial of Service via Deadlock in compress_write
CVSS 5.5
CVE-2022-2959 HIGH
Linux Kernel 5.8-5.10.120 - Race Condition in Pipe Buffer Handling
CVSS 7.0
CVE-2022-32811 HIGH
macOS - Memory Corruption via Improper Locking
CVSS 7.8
CVE-2022-20376 MEDIUM
Android - Use-After-Free in trusty_log_seq_start
CVSS 6.7
CVE-2022-20371 MEDIUM
Android - Use-After-Free in dm_bow_dtr via Race Condition
CVSS 6.4
CVE-2022-21775 MEDIUM
Android - Use-After-Free in Sched Driver due to Improper Locking
CVSS 6.7
CVE-2022-24946 HIGH
Mitsubishielectric Q03udecpu Firmware - Improper Locking
CVSS 7.5
CVE-2022-20153 MEDIUM
Android Kernel - Use-After-Free in rcu_cblist_dequeue
CVSS 6.7
CVE-2022-20141 HIGH
Android - Use-After-Free in ip_check_mc_rcu
CVSS 7.0
CVE-2022-31624 MEDIUM
MariaDB < 10.2.41 - Denial of Service via Improper Lock Handling in server_audit Plugin
CVSS 5.5
CVE-2022-31623 MEDIUM
MariaDB < 10.2.42 - Denial of Service via Improper Lock Release in ds_compress.cc
CVSS 5.5
CVE-2022-31622 MEDIUM
MariaDB < 10.2.42 - Denial of Service via Improper Lock Handling in ds_compress.cc
CVSS 5.5
CVE-2022-31621 MEDIUM
MariaDB < 10.2.41 - Denial of Service via Improper Lock Release in xbstream_open
CVSS 5.5
CVE-2022-26356 MEDIUM
Xen 4.0.0-4.11.x - Memory Leak via Racy Dirty VRAM Tracking and Paging Log Dirty Hypercalls
CVSS 5.6
CVE-2022-0897 MEDIUM
libvirt < 1.1.1 - Denial of Service via Unprotected NWFilter List Iteration
CVSS 4.3
CVE-2022-22175 HIGH
Juniper Junos OS 20.4-21.3 - Unauthenticated Denial of Service via SIP ALG
CVSS 7.5
CVE-2022-20016 MEDIUM
Android - Memory Corruption due to Improper Locking in vow Driver
CVSS 6.7
CVE-2021-47637 MEDIUM
Linux Kernel 4.9-4.19.238 - Deadlock via Concurrent Rename Whiteout and Inode Writeback
CVSS 5.5
CVE-2021-47632 MEDIUM
Linux Kernel - Denial of Service via Spinlock Recursion in change_page_attr()
CVSS 5.5
Details
Vulnerabilities 688
Links
MITRE CWE Entry Search this CWE With Exploits