Lucene search
+L

130 matches found

BDU FSTEC
BDU FSTEC
added 2021/10/29 12:0 a.m.7 views

The vulnerability relates to the SAPI extension of the PHP-FPM process runner, which is a PHP programming language interpreter. This vulnerability allows attackers to elevate their privileges to root.

The vulnerability of the SAPI extension for the PHP-FPM process interpreter involves access control issues when the processes are executed simultaneously. Exploiting this vulnerability can allow an attacker to gain elevated privileges to root...

7.8CVSS6.6AI score0.01337EPSS
Exploits1References19Affected Software6
GitLab Advisory Database
GitLab Advisory Database
added 2021/08/13 12:0 a.m.42 views

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Bouncy Castle BC Java before 1.66, BC C .NET before 1.8.7, BC-FJA before 1.0.1.2, 1.0.2.1, and BC-FNA before 1.0.1.1 have a timing issue within the EC math library that can expose information about the private key when an attacker is able to observe timing information for the generation of multip...

5.9CVSS6.7AI score0.01522EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2021/07/09 7:15 p.m.21 views

Race condition

A concurrent execution using shared resource with improper synchronization 'race condition' in the command shell of FortiSandbox before 3.2.2 may allow an authenticated attacker to bring the system into an unresponsive state via specifically orchestrated sequences of commands...

6.3CVSS5.4AI score0.00503EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2021/07/09 6:26 p.m.14 views

CVE-2020-29014

A concurrent execution using shared resource with improper synchronization 'race condition' in the command shell of FortiSandbox before 3.2.2 may allow an authenticated attacker to bring the system into an unresponsive state via specifically orchestrated sequences of commands...

6.3CVSS7.2AI score0.00503EPSS
Exploits0References1
Veracode
Veracode
added 2021/05/11 7:21 a.m.18 views

Denial Of Service (DoS)

hapi-fhir-jpaserver-api is vulnerable to denial of service. A weakness in the handling of FHIR history operations on a server with a very large number of resources would result in a denial of service condition if the history operation is executed by many clients e.g. 200 concurrently...

5.3CVSS2AI score0.01587EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/11/19 12:0 a.m.7 views

The vulnerability in the driver/xen/events/events_base.c component of Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the drivers/xen/events/eventsbase.c component in Linux operating systems arises from the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6.6AI score0.00269EPSS
Exploits0References32Affected Software4
Microsoft CVE
Microsoft CVE
added 2020/08/18 7:0 a.m.4 views

GRUB2 contains a race condition leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing.

...

6.4CVSS7AI score0.00977EPSS
Exploits0
GitLab Advisory Database
GitLab Advisory Database
added 2019/09/16 12:0 a.m.64 views

Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)

The File Session Manager in Beego allows local users to read session files because there is a race condition involving file creation within a directory with weak permissions...

4.7CVSS3.6AI score0.00199EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/02/22 12:0 a.m.7 views

UBUNTU-CVE-2019-9003

In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmimsghandler.c use-after-free and OOPS by arranging for certain simultaneous execution of the code, as demonstrated by a "service ipmievd restart" loop...

7.5CVSS6.8AI score0.04881EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2014/12/16 12:0 a.m.36 views

openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2014:1638-1)

This openjdk update fixes the following security and non security issues : - Upgrade to 2.4.8 bnc887530 - Changed back from gzipped tarball to xz - Changed the keyring file to add Andrew John Hughes that signed the icedtea package - Change ZERO to AARCH64 tarball - Removed patches : -...

10CVSS7.8AI score0.10117EPSS
Exploits2References43
Rows per page
Query Builder