PT-2022-2458 · Microsoft · Windows Playto Manager +1

Name of the Vulnerable Software and Affected Versions: Windows PlayTo Manager affected versions not specified Description: The issue is related to synchronization errors when using a shared resource in the Windows PlayTo Manager component. This can allow an attacker to elevate their privileges...

PT-2022-2535 · Microsoft · Windows Kernel +1

Name of the Vulnerable Software and Affected Versions: Windows Kernel affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in the Windows Kernel, caused by synchronization errors when using a shared resource. This could allow an attacker to...

PT-2022-2446 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Windows operating system, specifically concerning the Advanced Local Procedure Call ALPC handler. It involves...

PT-2022-2536 · Microsoft · Windows Cluster Shared Volume +1

Name of the Vulnerable Software and Affected Versions: Windows Cluster Shared Volume CSV affected versions not specified Description: The issue is related to errors in synchronization when using a shared resource in the Windows Cluster Shared Volume CSV file system. This can allow an attacker to...

PT-2022-2454 · Microsoft · Windows Hyper-V +1

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V affected versions not specified Description: The issue is related to synchronization errors when using a shared resource in the Windows Hyper-V hardware virtualization system. This can allow an attacker to elevate their...

PT-2022-2447 · Microsoft · Windows Digital Media Receiver +1

Name of the Vulnerable Software and Affected Versions: Windows Digital Media Receiver affected versions not specified Description: The issue is related to synchronization errors when using a shared resource in the Windows Digital Media Receiver component of the Windows operating system. This can...

PT-2022-2645 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in synchronization when using a shared resource, specifically a "race condition" in the Storage Spaces Direct feature of the Microsoft Windows operating syste...

GHSA-62XG-239J-VXG7 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in pyftpdlib

Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN error, a different vulnerabilit...

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in pyftpdlib

Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN error, a different vulnerabilit...

GHSA-MPG6-RGP4-35RR Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in pyftpdlib

Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.1 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, a different...

The vulnerability of the networkd-dispatcher component, which manages connection states in Linux operating systems, and is part of the Systemd subsystem responsible for service initialization and management, allows a malicious actor to escalate their privileges or execute arbitrary code.

The vulnerabilities of the networkd-dispatcher component, which manages connection states and initializes services within Systemd in Linux operating systems, stem from synchronization errors when using shared resources. Exploiting these vulnerabilities can allow attackers to increase their...

The vulnerability of the software for synchronizing and sharing files of Hitachi Content Platform Anywhere lies in the insufficient protection of registration data, allowing unauthorized access to protected information.

The vulnerability of the Hitachi Content Platform Anywhere synchronization and sharing software is related to insufficient protection for registration data. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to protected information...

CVE-2022-22323

IBM Security Identity Manager IBM Security Verify Password Synchronization Plug-in for Windows AD 10.x is vulnerable to a denial of service, caused by a heap-based buffer overflow in the Password Synch Plug-in. An authenticated attacker could exploit this vulnerability to cause a denial of servic...

CVE-2022-22312

IBM Security Identity Manager IBM Security Verify Password Synchronization Plug-in for Windows AD 10.x is vulnerable to a denial of service, caused by a heap-based buffer overflow in the Password Synch Plug-in. An authenticated attacker could exploit this vulnerability to cause a denial of servic...

CVE-2022-22323

IBM Security Identity Manager IBM Security Verify Password Synchronization Plug-in for Windows AD 10.x is vulnerable to a denial of service, caused by a heap-based buffer overflow in the Password Synch Plug-in. An authenticated attacker could exploit this vulnerability to cause a denial of servic...

Heap overflow

IBM Security Identity Manager IBM Security Verify Password Synchronization Plug-in for Windows AD 10.x is vulnerable to a denial of service, caused by a heap-based buffer overflow in the Password Synch Plug-in. An authenticated attacker could exploit this vulnerability to cause a denial of servic...

CVE-2022-22312

CVE-2022-22312 concerns IBM Security Identity Manager’s Password Synchronization Plug-in for Windows AD (10.x). The vulnerability is a heap-based buffer overflow in the Password Synch Plug-in that can cause a denial of service when exploited by an authenticated attacker. IBM’s bulletin confirms t...

CVE-2022-22312

IBM Security Identity Manager IBM Security Verify Password Synchronization Plug-in for Windows AD 10.x is vulnerable to a denial of service, caused by a heap-based buffer overflow in the Password Synch Plug-in. An authenticated attacker could exploit this vulnerability to cause a denial of servic...

The vulnerability of the Advanced Local Procedure Call (ALPC) handler in the Windows operating system allows attackers to escalate their privileges.

The vulnerability of the Advanced Local Procedure Call ALPC in the Windows operating system arises due to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

ALBA-2022:1547 sanlock bug fix and enhancement update

The sanlock packages provide a shared storage lock manager. Hosts with shared access to a block device or a file can use sanlock to synchronize their activities. VDSM and libvirt use sanlock to synchronize access to shared devices or files. Bug Fixes and Enhancements: sanlock lockspace stuck in...