The vulnerabilities of Intel System Resources Defense and Intel System Security Report, microprogramming software for Intel processors, allow attackers to enhance their privileges.

The vulnerabilities of Intel System Resources Defense and Intel System Security software related to Intel processor microsoftware are associated with synchronization errors when using shared resources. Exploiting these vulnerabilities can allow attackers to gain increased privileges...

CVE-2025-0759

IBM EntireX 11.1 could allow a local user to unintentionally modify data timestamp integrity due to improper shared resource synchronization...

CVE-2025-0759

IBM EntireX 11.1 could allow a local user to unintentionally modify data timestamp integrity due to improper shared resource synchronization...

CVE-2025-0759 IBM EntireX race condition

IBM EntireX 11.1 could allow a local user to unintentionally modify data timestamp integrity due to improper shared resource synchronization...

CVE-2025-0759

Summary (CVE-2025-0759): IBM EntireX 11.1 is affected by a local TOCTOU race condition that could allow a local user to unintentionally modify data timestamp integrity due to improper shared-resource synchronization. The CVSS base metrics indicate a low overall impact with local access, minimal p...

PT-2025-8958 · Ibm · Ibm Entirex

Name of the Vulnerable Software and Affected Versions: IBM EntireX version 11.1 Description: The issue is related to improper shared resource synchronization, which could allow a local user to unintentionally modify data timestamp integrity. Recommendations: For IBM EntireX version 11.1, at the...

CVE-2025-21693

In the Linux kernel, the following vulnerability has been resolved: mm: zswap: properly synchronize freeing resources during CPU hotunplug In zswapcompress and zswapdecompress, the per-CPU acompctx of the current CPU at the beginning of the operation is retrieved and used throughout. However, sin...

SUSE CVE-2025-21693

In the Linux kernel, the following vulnerability has been resolved: mm: zswap: properly synchronize freeing resources during CPU hotunplug In zswapcompress and zswapdecompress, the per-CPU acompctx of the current CPU at the beginning of the operation is retrieved and used throughout. However, sin...

CVE-2025-21693 mm: zswap: properly synchronize freeing resources during CPU hotunplug

In the Linux kernel, the following vulnerability has been resolved: mm: zswap: properly synchronize freeing resources during CPU hotunplug In zswapcompress and zswapdecompress, the per-CPU acompctx of the current CPU at the beginning of the operation is retrieved and used throughout. However, sin...

CVE-2025-21693

In the Linux kernel, the following vulnerability has been resolved: mm: zswap: properly synchronize freeing resources during CPU hotunplug In zswapcompress and zswapdecompress, the per-CPU acompctx of the current CPU at the beginning of the operation is retrieved and used throughout. However, sin...

CVE-2025-21693

In the Linux kernel CVE-2025-21693, the zswap path could UAF resources if the original per-CPU acomp_ctx is still in use when a CPU hotplug occurs, because preemption/migration isn’t disabled during the operation. The defect affects mm/zswap: the code retrieves acomp_ctx on the current CPU at ope...

The vulnerability of the Win32 kernel subsystem in Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Win32 kernel subsystem in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the vfio component in the Linux operating system’s kernel allows a attacker to trigger a Denial-of-Service Attack (DoS).

The vulnerability of the vfio component in Linux operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to trigger a Denial-of-Service Attack...

The vulnerability of the rose_connect() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the roseconnect function in the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the distributed file system (DFS) of the Windows operating system, which allows a hacker to execute arbitrary code

The vulnerability of the distributed file system DFS in the Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the Windows operating system’s kernel, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s kernel is related to synchronization errors when using a shared resource „Race Conditions“. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of Group Policy Services in Windows operating systems allows a perpetrator to increase their privileges.

The vulnerability of Group Policy Services in Windows operating systems is related to synchronization errors when using common resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the InfoRail service, a mobile device management system of Avalanche, allows a hacker to bypass security restrictions.

The vulnerability of the InfoRail system, a mobile device management solution, is related to deficiencies in authentication procedures due to incorrect synchronization when using shared resources. Exploiting this vulnerability can allow attackers to bypass security restrictions remotely...

PT-2023-4369 · Microsoft · Windows Projected File System +1

Name of the Vulnerable Software and Affected Versions: Windows Projected File System affected versions not specified Description: The issue is caused by synchronization errors when using a shared resource in the Windows Projected File System component. Exploitation of this issue may allow an...

PT-2023-3660 · Microsoft · Windows Installer +1

Name of the Vulnerable Software and Affected Versions: Windows Installer affected versions not specified Description: The issue is related to synchronization errors when using a shared resource in the Windows operating system. It allows an attacker to elevate privileges in the system. This is an...