CVE-2022-1931 Incorrect Synchronization in polonel/trudesk

Incorrect Synchronization in GitHub repository polonel/trudesk prior to 1.2.3...

PT-2022-2789 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based Description: The issue is related to synchronization errors when using a shared resource, allowing a remote attacker to potentially elevate their privileges. Recommendations: At the moment, there is no informatio...

PT-2022-2879 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based affected versions not specified Description: The issue is related to synchronization errors when using a shared resource in Microsoft Edge. It may allow a remote attacker to elevate their privileges...

Chris Brame Trudesk 安全漏洞

Chris Brame Trudesk is an open source helpdesk/ticketing solution from Chris Brame USA. A security vulnerability exists in versions prior to Chris Brame Trudesk 1.2.3, which stems from the presence of a synchronization error...

The vulnerability of the Storage Spaces Direct distributed storage function in the Microsoft Windows operating system allows a hacker to exploit their privileges.

The vulnerability of the Storage Spaces Direct distributed storage function in the Microsoft Windows operating system is related to synchronization errors when using shared resources “Race Conditions”. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the web page rendering modules in WebKitGTK and WPE WebKit, caused by synchronization errors when using a common resource, allows a hacker to execute arbitrary code.

The vulnerability of the Web page rendering modules in WebKitGTK and WPE WebKit arises due to synchronization errors when using a common resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code upon processing malicious web content...

The vulnerability of the chown_one() function in the initialization subsystem and systemd service management allows a attacker to increase their privileges.

The vulnerability of the chownone function in the system initialization and systemd service management subsystem is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to increase their privileges...

Magento Unrestricted file upload vulnerability

An unrestricted file upload vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated admin user can manipulate the Synchronization feature in the Media File Storage of the database to transform uploaded JPEG file into a PHP file...

GHSA-JQM6-M3J3-8GG9 Concurrent Execution using Shared Resource with Improper Synchronization in Elasticsearch

A race condition flaw was found in the response headers Elasticsearch versions before 7.2.1 and 6.8.2 returns to a request. On a system with multiple users submitting requests, it could be possible for an attacker to gain access to response header containing sensitive data from another user...

The vulnerability in the implementation of the Point to Point Tunneling Protocol (PPPT) for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Point to Point Tunneling Protocol PPTP implementation in Windows operating systems is related to synchronization errors when using a shared resource “Race Situation”. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...

The vulnerability in the implementation of the Point to Point Tunneling Protocol (PPPT) for Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Point to Point Tunneling Protocol PPTP implementation in Windows operating systems is related to synchronization errors when using a shared resource “Race Situation”. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...

UBUNTU-CVE-2022-1734

A flaw in Linux Kernel found in nfcmrvlnciunregisterdev in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or write when non synchronized between cleanup routine and firmware download routine...

GHSA-HW4G-FHCP-X5MQ Concurrent Execution using Shared Resource with Improper Synchronization in pyftpdlib

Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected value of None for the address, or ...

Concurrent Execution using Shared Resource with Improper Synchronization in pyftpdlib

Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected value of None for the address, or ...

GHSA-4644-HG35-55M9 Concurrent Execution using Shared Resource with Improper Synchronization in Spring Security

Race condition in the RunAsManager mechanism in VMware SpringSource Spring Security before 2.0.7 and 3.0.x before 3.0.6 stores the Authentication object in the shared security context, which allows attackers to gain privileges via a crafted thread...

Concurrent Execution using Shared Resource with Improper Synchronization in Spring Security

Race condition in the RunAsManager mechanism in VMware SpringSource Spring Security before 2.0.7 and 3.0.x before 3.0.6 stores the Authentication object in the shared security context, which allows attackers to gain privileges via a crafted thread...

The vulnerability of the Windows operating system’s kernel allows attackers to enhance their privileges.

The vulnerability of Windows operating system kernels arises due to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Cluster Shared Volumes file system in Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Cluster Shared Volumes file system in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of Windows Push Notification apps, which allow attackers to escalate their privileges.

The vulnerability of Windows Push Notification apps related to synchronization errors when using shared resources “Race Conditions”. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerability of the Cluster Shared Volumes file system in Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Cluster Shared Volumes file system in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to increase their privileges...