145 matches found
CVE-2025-47999
Missing synchronization in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network...
PT-2025-29046
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.15.0-rc7 Description: A flaw was discovered in the Linux kernel related to the MPLS Multiprotocol Label Switching implementation. Specifically, the mpls route input rcu function could be called from within an...
CVE-2025-38250 Bluetooth: hci_core: Fix use-after-free in vhci_flush()
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: Fix use-after-free in vhciflush syzbot reported use-after-free in vhciflush without repro. 0 From the splat, a thread closed a vhci file descriptor while its device was being used by iotcl on another thread...
PT-2025-28510 · Microsoft · Input Method Editor +1
Name of the Vulnerable Software and Affected Versions: Microsoft Input Method Editor IME affected versions not specified Description: The issue is related to a race condition due to improper synchronization when using a shared resource, allowing an authorized attacker to elevate privileges over a...
The vulnerability of the drivers/net/ethernet/mellanox/mlx5 kernel component of the Linux operating system, which allows a hacker to cause a service failure.
The vulnerability of the drivers/net/ethernet/mellanox/mlx5 kernel component of the Linux operating system is related to the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the `cifs_close_deferred_file()` function in the fs/cifs/misc.c module of the Linux kernel’s file system support module allows a attacker to cause a service failure.
The vulnerability of the cifsclosedeferredfile function in the fs/cifs/misc.c module of the Linux kernel’s file system support module is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...
kernel: tipc: fix use-after-free Read in tipc_named_reinit
A vulnerability was found in the Linux kernel's Transparent Inter-Process Communication TIPC subsystem, allowing a use-after-free condition during the cleanup process. This issue arises when the kernel's work queue mechanism does not properly synchronize the destruction of TIPC namespaces with th...
CVE-2023-30285
An issue in Deviniti Issue Sync Synchronization v3.5.2 for Jira allows attackers to obtain the login credentials of a user via a crafted request sent to /rest/synchronizer/1.0/technicalUser...
CVE-2021-30263
Possible race condition can occur due to lack of synchronization mechanism when On-Device Logging node open twice concurrently in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...
CVE-2021-20592
Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions 01.19.000 through 01.39.010 and GT23 model communication driver versions 01.19.000 through 01.39.010 and GT SoftGOT2000 versions...
CVE-2025-47735
inner::drop in inner.rs in the wgp crate through 0.2.0 for Rust lacks dropslow thread synchronization...
CVE-2025-47735
inner::drop in inner.rs in the wgp crate through 0.2.0 for Rust lacks dropslow thread synchronization...
CVE-2025-47545 WordPress Poll Maker plugin <= 5.7.7 - Race Condition Vulnerability
Concurrent Execution using Shared Resource with Improper Synchronization 'Race Condition' vulnerability in Ays Pro Poll Maker poll-maker allows Leveraging Race Conditions.This issue affects Poll Maker: from n/a through = 5.7.7...
CVE-2022-49892
In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix use-after-free for dynamic ftraceops KASAN reported a use-after-free with ftrace ops 1. It was found from vmcore that perf had registered two ops with the same content successively, both dynamic. After unregistering t...
CVE-2022-49892 ftrace: Fix use-after-free for dynamic ftrace_ops
In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix use-after-free for dynamic ftraceops KASAN reported a use-after-free with ftrace ops 1. It was found from vmcore that perf had registered two ops with the same content successively, both dynamic. After unregistering t...
CVE-2022-49892
CVE-2022-49892 — Linux kernel (ftrace): A use-after-free was fixed in dynamic ftrace_ops handling. KASAN reported use-after-free when two dynamic ftrace_ops with identical content were registered, and on unregistering the second op, FTRACE_UPDATE_CALLS and FTRACE_UPDATE_TRACE_FUNC could be skippe...
CVE-2022-49850 nilfs2: fix deadlock in nilfs_count_free_blocks()
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix deadlock in nilfscountfreeblocks A semaphore deadlock can occur if nilfsgetblock detects metadata corruption while locating data blocks and a superblock writeback occurs at the same time: task 1 task 2 ------ ------ A...
Vulnerability of the ufshcd_exec_dev_cmd() function in the drivers/scsi/ufs/ufshcd.c module – This driver provides support for SCSI devices in the Linux operating system. It can be exploited by attackers to cause service failures.
Vulnerability of the ufshcdexecdevcmd function in the drivers/scsi/ufs/ufshcd.c module – The Linux kernel’s SCSI device support driver is vulnerable to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the receive.c component of WireGuard in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the wireguard/receive.c component in the Linux operating system’s kernel is related to the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2024-58131
FISCO BCOS 3.11.0 has an issue with synchronization of the transaction pool that can, for example, be observed when a malicious node that has modified the codebase to allow a large minsealtime value joins a blockchain network...