CWE-667

Improper Locking

Parent: CWE-662 - Improper Synchronization

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

688 vulnerabilities with CWE-667
CVE-2021-0529 HIGH
Android - Memory Corruption due to Improper Locking in Memory Management Driver
CVSS 7.8
CVE-2021-29509 HIGH
Puma < 4.3.8 - Denial of Service via Keep-Alive Connection Starvation
CVSS 7.5
CVE-2021-31427 MEDIUM
Parallels Desktop 15.1.5-47309 - Information Disclosure via Open Tools Gate Race Condition
CVSS 5.6
CVE-2021-31422 HIGH
Parallels Desktop 16.1.1-49141 - Privilege Escalation via e1000e Virtual Device Race Condition
CVSS 7.5
CVE-2021-1782 HIGH KEV
iPadOS < 14.4 - Privilege Escalation via Race Condition
CVSS 7.0
CVE-2021-20291 MEDIUM
containers/storage < 1.28.1 - Denial of Service via Malicious Tar Archive Processing
CVSS 6.5
CVE-2021-28951 MEDIUM
Linux Kernel < 5.11.8 - Denial of Service via io_uring SQPOLL Deadlock
CVSS 5.5
CVE-2021-26708 HIGH
Linux Kernel 5.5-5.10.12 - Local Privilege Escalation via AF_VSOCK Race Condition
CVSS 7.0
CVE-2020-36775 MEDIUM
Linux Kernel < 5.4.189 - Denial of Service via Improper Locking in f2fs_write_compressed_pages
CVSS 5.5
CVE-2020-11284 HIGH
Qualcomm AQT1000 Firmware - Improper Locking via Non-Secure Boot Loader System Call Sequence
CVSS 8.4
CVE-2020-36220 MEDIUM
Va-ts < 0.0.4 - Out-of-Bounds Write
CVSS 5.9
CVE-2020-12658 CRITICAL
gssproxy < 0.8.3 - Denial of Service via Improper Mutex Handling
CVSS 9.8
CVE-2020-27066 MEDIUM
Android - Use-After-Free in xfrm6_tunnel_free_spi
CVSS 6.7
CVE-2020-27035 MEDIUM
Android - Use-After-Free in C2AllocatorIon.cpp priorLinearAllocation
CVSS 5.5
CVE-2020-29661 HIGH
Linux kernel <5.9.13 - Use After Free
CVSS 7.8
CVE-2020-29660 MEDIUM
Linux kernel <5.9.14 - Read-After-Free
CVSS 4.4
CVE-2020-3704 HIGH
Qualcomm Agatti Firmware - Denial of Service via Invalid Connection Request PDU
CVSS 7.5
CVE-2020-9959 LOW
iPadOS < 14.0 - Unauthenticated Lock Screen Bypass via Notification Preview
CVSS 2.4
CVE-2020-9946 MEDIUM
iPadOS < 14.0 - Improper Locking
CVSS 6.8
CVE-2020-0423 HIGH
Android - Use-After-Free in binder_release_work
CVSS 7.8
CVE-2020-0420 HIGH
Android 11 - Missing Authorization in GpuService.cpp setUpdatableDriverPath
CVSS 7.8
CVE-2020-15674 HIGH
Firefox < 81.0 - Memory Corruption
CVSS 8.8
CVE-2020-15668 MEDIUM
Firefox < 80 - Improper Locking in Certificate Trust Database
CVSS 4.3
CVE-2020-0357 HIGH
Android 11 - Use-After-Free in SurfaceFlinger
CVSS 7.8
CVE-2020-0303 HIGH
Android 11 - Use-After-Free in Media Extractor
CVSS 8.8
Details
Vulnerabilities 688
Links
MITRE CWE Entry Search this CWE With Exploits