712 matches found
PT-2024-5649 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to synchronization errors when using a shared resource, specifically a "race condition" situation. This can allow an attacker to elevate their privileges. The estimated...
PT-2024-6179 · Microsoft · Windows Kernel-Mode Driver +1
Name of the Vulnerable Software and Affected Versions: Windows Kernel-Mode Driver affected versions not specified Description: The issue is related to an Elevation of Privilege vulnerability in the Windows Kernel-Mode Driver. It is caused by synchronization errors when using a shared resource,...
The vulnerability of the Frames component in Google Chrome and Microsoft Edge browsers allows a hacker to execute arbitrary code.
The vulnerability of the Frames component in Google Chrome and Microsoft Edge is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...
The vulnerability of the Team Chat component in Zoom’s video conferencing software allows attackers to disclose protected information.
The vulnerability of the Team Chat component in Zoom’s video conferencing software is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker who operates remotely to disclose sensitive information...
The vulnerability of Zoom’s video conferencing software, related to synchronization errors when using shared resources (“Race Situation”), allows attackers to escalate their privileges.
The vulnerability of Zoom’s video conferencing software is related to synchronization errors when using a shared resource “Race Situation”. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerabilities of the functions cert_store_stats() and get_ca_certs() in the SSL module of the Python programming language interpreter (CPython) allow a malicious individual to gain unauthorized access to protected information.
The vulnerability of the certstorestats and getcacerts functions in the SSL module of the Python programming language interpreter CPython is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...
The vulnerability of the DefaultAzureCredential and ManagedIdentityCredential components of the Azure Identity Libraries and Microsoft Authentication Library allows a perpetrator to escalate their privileges.
The vulnerability of the DefaultAzureCredential and ManagedIdentityCredential components in the Azure Identity Libraries and Microsoft Authentication Library authentication libraries is related to synchronization errors when using a common resource. Exploiting this vulnerability can allow attacke...
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Overview Affected versions of this package are vulnerable to Concurrent Execution using Shared Resource with Improper Synchronization 'Race Condition' in the authentication process. An attacker can elevate privileges by exploiting race conditions during the token validation steps. This is only...
PT-2024-4302
Name of the Vulnerable Software and Affected Versions Azure Identity Libraries and Microsoft Authentication Library affected versions not specified Description The vulnerability in Azure Identity Libraries and Microsoft Authentication Library is related to synchronization errors when using a shar...
PT-2024-4173
Name of the Vulnerable Software and Affected Versions Windows Kernel affected versions not specified Description The issue is related to synchronization errors when using a shared resource, which can be exploited to elevate privileges. An elevation-of-privilege vulnerability allows attackers to...
Hitachi FOXMAN-UN Security Vulnerability
Hitachi FOXMAN-UN is a powerful toolset in a comprehensive NMS suite from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in Hitachi FOXMAN-UN and UNEM, which arises from sensitive information being stored in plaintext in a resource that is accessed by another span of control...
The vulnerability of the Apex One NT RealTime Scan anti-virus software programs Trend Micro Apex One and Apex One as a Service allows attackers to enhance their privileges and execute arbitrary code.
The vulnerability of the Apex One NT RealTime Scan antivirus software programs Trend Micro Apex One and Apex One as a Service is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to increase their privileges and execute arbitrary...
The vulnerability of the rose_connect() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the roseconnect function in the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...
The vulnerability in the execution environment for JavaScript and TypeScript Deno arises from synchronization errors when using a shared resource, allowing an attacker to expose sensitive information.
The vulnerability of the execution environment for JavaScript and TypeScript in Deno arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...
USN-6773-1 dotnet7, dotnet8 vulnerabilities
It was discovered that .NET did not properly handle memory in it's Double Parse routine. An attacker could possibly use this issue to achieve remote code execution. CVE-2024-30045 It was discovered that .NET did not properly handle the usage of a shared resource. An attacker could possibly use th...
USN-6773-1: .NET vulnerabilities
It was discovered that .NET did not properly handle memory in it's Double Parse routine. An attacker could possibly use this issue to achieve remote code execution. CVE-2024-30045 It was discovered that .NET did not properly handle the usage of a shared resource. An attacker could possibly use th...
PT-2024-3642 · Microsoft +7 · Visual Studio +8
Name of the Vulnerable Software and Affected Versions: Microsoft Visual Studio affected versions not specified Microsoft .NET affected versions not specified Description: The issue is caused by synchronization errors when using a shared resource. It may allow a remote attacker to cause a denial o...
The vulnerability of the distributed file system (DFS) of the Windows operating system, which allows a hacker to execute arbitrary code
The vulnerability of the distributed file system DFS in the Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...
The vulnerability of the Ivanti Secure Access Client (formerly Pulse Secure Desktop Client) for corporate networks’ VPN servers in Windows operating systems, related to synchronization errors when using a shared resource, allows a hacker to escalate their privileges.
The vulnerability of the VPN server for corporate networks of Ivanti Secure Access Client formerly Pulse Secure Desktop Client on Windows operating systems is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow attackers to increase their...
The vulnerability of the Windows operating system’s kernel allows attackers to enhance their privileges.
The vulnerability of the Windows operating system’s kernel is related to synchronization errors when using a shared resource „Race Conditions“. Exploiting this vulnerability can allow an attacker to increase their privileges...