Lucene search
K

712 matches found

Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.2 views

PT-2024-5649 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to synchronization errors when using a shared resource, specifically a "race condition" situation. This can allow an attacker to elevate their privileges. The estimated...

7.8CVSS6.3AI score0.00513EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.3 views

PT-2024-6179 · Microsoft · Windows Kernel-Mode Driver +1

Name of the Vulnerable Software and Affected Versions: Windows Kernel-Mode Driver affected versions not specified Description: The issue is related to an Elevation of Privilege vulnerability in the Windows Kernel-Mode Driver. It is caused by synchronization errors when using a shared resource,...

7.8CVSS6.5AI score0.01114EPSS
Exploits0References15
BDU FSTEC
BDU FSTEC
added 2024/07/31 12:0 a.m.23 views

The vulnerability of the Frames component in Google Chrome and Microsoft Edge browsers allows a hacker to execute arbitrary code.

The vulnerability of the Frames component in Google Chrome and Microsoft Edge is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

8.8CVSS6.9AI score0.00365EPSS
Exploits0References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/07/24 12:0 a.m.8 views

The vulnerability of the Team Chat component in Zoom’s video conferencing software allows attackers to disclose protected information.

The vulnerability of the Team Chat component in Zoom’s video conferencing software is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker who operates remotely to disclose sensitive information...

6.8CVSS5.4AI score0.00439EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/07/24 12:0 a.m.8 views

The vulnerability of Zoom’s video conferencing software, related to synchronization errors when using shared resources (“Race Situation”), allows attackers to escalate their privileges.

The vulnerability of Zoom’s video conferencing software is related to synchronization errors when using a shared resource “Race Situation”. Exploiting this vulnerability can allow attackers to gain increased privileges...

4.4CVSS5.5AI score0.00114EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/07/10 12:0 a.m.7 views

The vulnerabilities of the functions cert_store_stats() and get_ca_certs() in the SSL module of the Python programming language interpreter (CPython) allow a malicious individual to gain unauthorized access to protected information.

The vulnerability of the certstorestats and getcacerts functions in the SSL module of the Python programming language interpreter CPython is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...

7.4CVSS6.7AI score0.00804EPSS
Exploits0References19Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/06/26 12:0 a.m.7 views

The vulnerability of the DefaultAzureCredential and ManagedIdentityCredential components of the Azure Identity Libraries and Microsoft Authentication Library allows a perpetrator to escalate their privileges.

The vulnerability of the DefaultAzureCredential and ManagedIdentityCredential components in the Azure Identity Libraries and Microsoft Authentication Library authentication libraries is related to synchronization errors when using a common resource. Exploiting this vulnerability can allow attacke...

5.5CVSS6.3AI score0.00788EPSS
Exploits0References7Affected Software2
Snyk
Snyk
added 2024/06/11 6:30 p.m.7 views

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Overview Affected versions of this package are vulnerable to Concurrent Execution using Shared Resource with Improper Synchronization 'Race Condition' in the authentication process. An attacker can elevate privileges by exploiting race conditions during the token validation steps. This is only...

5.5CVSS7AI score0.00788EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/11 12:0 a.m.7 views

PT-2024-4302

Name of the Vulnerable Software and Affected Versions Azure Identity Libraries and Microsoft Authentication Library affected versions not specified Description The vulnerability in Azure Identity Libraries and Microsoft Authentication Library is related to synchronization errors when using a shar...

7.5CVSS6.3AI score0.00788EPSS
Exploits0References359
Positive Technologies
Positive Technologies
added 2024/06/11 12:0 a.m.3 views

PT-2024-4173

Name of the Vulnerable Software and Affected Versions Windows Kernel affected versions not specified Description The issue is related to synchronization errors when using a shared resource, which can be exploited to elevate privileges. An elevation-of-privilege vulnerability allows attackers to...

7CVSS6.4AI score0.0054EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/06/11 12:0 a.m.4 views

Hitachi FOXMAN-UN Security Vulnerability

Hitachi FOXMAN-UN is a powerful toolset in a comprehensive NMS suite from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in Hitachi FOXMAN-UN and UNEM, which arises from sensitive information being stored in plaintext in a resource that is accessed by another span of control...

4.1CVSS6.4AI score0.0011EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/06/10 12:0 a.m.7 views

The vulnerability of the Apex One NT RealTime Scan anti-virus software programs Trend Micro Apex One and Apex One as a Service allows attackers to enhance their privileges and execute arbitrary code.

The vulnerability of the Apex One NT RealTime Scan antivirus software programs Trend Micro Apex One and Apex One as a Service is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to increase their privileges and execute arbitrary...

7.8CVSS7.5AI score0.00401EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/05/28 12:0 a.m.6 views

The vulnerability of the rose_connect() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the roseconnect function in the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

7CVSS7.2AI score0.00258EPSS
Exploits1References8Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/05/24 12:0 a.m.8 views

The vulnerability in the execution environment for JavaScript and TypeScript Deno arises from synchronization errors when using a shared resource, allowing an attacker to expose sensitive information.

The vulnerability of the execution environment for JavaScript and TypeScript in Deno arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...

7.7CVSS5.6AI score0.0034EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/05/16 1:40 p.m.13 views

USN-6773-1 dotnet7, dotnet8 vulnerabilities

It was discovered that .NET did not properly handle memory in it's Double Parse routine. An attacker could possibly use this issue to achieve remote code execution. CVE-2024-30045 It was discovered that .NET did not properly handle the usage of a shared resource. An attacker could possibly use th...

6.3CVSS6.8AI score0.01688EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2024/05/16 1:40 p.m.46 views

USN-6773-1: .NET vulnerabilities

It was discovered that .NET did not properly handle memory in it's Double Parse routine. An attacker could possibly use this issue to achieve remote code execution. CVE-2024-30045 It was discovered that .NET did not properly handle the usage of a shared resource. An attacker could possibly use th...

6.3CVSS7.9AI score0.01688EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/05/14 12:0 a.m.9 views

PT-2024-3642 · Microsoft +7 · Visual Studio +8

Name of the Vulnerable Software and Affected Versions: Microsoft Visual Studio affected versions not specified Microsoft .NET affected versions not specified Description: The issue is caused by synchronization errors when using a shared resource. It may allow a remote attacker to cause a denial o...

9.8CVSS6.4AI score0.99999EPSS
Exploits19References211
BDU FSTEC
BDU FSTEC
added 2024/05/07 12:0 a.m.4 views

The vulnerability of the distributed file system (DFS) of the Windows operating system, which allows a hacker to execute arbitrary code

The vulnerability of the distributed file system DFS in the Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

8.3CVSS8.1AI score0.01344EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/05/06 12:0 a.m.7 views

The vulnerability of the Ivanti Secure Access Client (formerly Pulse Secure Desktop Client) for corporate networks’ VPN servers in Windows operating systems, related to synchronization errors when using a shared resource, allows a hacker to escalate their privileges.

The vulnerability of the VPN server for corporate networks of Ivanti Secure Access Client formerly Pulse Secure Desktop Client on Windows operating systems is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow attackers to increase their...

7.8CVSS7.2AI score0.00672EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/23 12:0 a.m.9 views

The vulnerability of the Windows operating system’s kernel allows attackers to enhance their privileges.

The vulnerability of the Windows operating system’s kernel is related to synchronization errors when using a shared resource „Race Conditions“. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS7.6AI score0.12917EPSS
Exploits0References5
Rows per page
Query Builder