The vulnerability of the Ivanti Secure Access Client (formerly Pulse Secure Desktop Client) for corporate networks’ VPN servers in Windows operating systems, related to synchronization errors when using a shared resource, allows a hacker to escalate their privileges.

The vulnerability of the VPN server for corporate networks of Ivanti Secure Access Client formerly Pulse Secure Desktop Client on Windows operating systems is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow attackers to increase their...

The vulnerability of the Brokering File System (BFS) of the Windows Server operating system allows a perpetrator to increase their privileges.

The vulnerability of the Brokering File System BFS in the Windows Server operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the virStoragePoolObjListSearch function in the virtualization management library Libvirt allows a attacker to trigger a service failure.

The vulnerability of the virStoragePoolObjListSearch function in the Libvirt management library arises due to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

ROS-20240409-02

Vulnerability of the hmac.comparedigest function of the Lib/hmac.py library of the programming language interpreter Python is related to synchronization errors when using a shared resource "Race Situation". Exploitation of the vulnerability could allow an attacker acting remotely to escalate thei...

The vulnerability of the Nix package manager in Unix operating systems, related to synchronization errors when using shared resources, allows a perpetrator to modify the output of package processes in the Nix store.

The vulnerability of the Nix package manager in Unix operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability allows a remote attacker to modify the output of package processes in the Nix store...

The vulnerability of the kernel of iOS operating systems, macOS Sonoma, iPadOS, tvOS, visionOS, and watchOS allows attackers to disclose protected information.

The vulnerability of the kernel of iOS, macOS Sonoma, iPadOS, tvOS, visionOS, and watchOS is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to disclose sensitive information that is protected by these systems...

The vulnerability of the PMIx process management interface, related to synchronization errors when using a common resource, allows a perpetrator to gain access to confidential data.

The vulnerability of the PMIx process management interface is related to the execution of code from the library with UID 0. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data...

The vulnerability of Intel microprogramming software, related to synchronization errors when using shared resources, allows attackers to exploit their privileges.

The vulnerability of Intel microprogramming software is related to synchronization errors when using common resources. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the GPU driver for Mali-based processors, based on Arm, Bifrost, and Valhall architectures, allows a hacker to execute arbitrary code.

The vulnerability of the GPU driver for Mali-based processors based on Arm, Bifrost, and Valhall is related to synchronization errors when using shared resources. Exploiting this vulnerability allows an attacker to execute arbitrary code...

ROS-20240401-01

Vulnerability of idedmacb function of QEMU hardware emulator is related to synchronization errors when processing the DRQSTAT parameter. Exploitation of the vulnerability could allow an attacker to gain access to read, modify, or delete data or cause a denial of service Vulnerability in the...

The vulnerability of the chmod() method in the Apache Doris backend storage and frontend request handler, related to synchronization errors when using shared resources, allows attackers to compromise the integrity of the protected information.

The vulnerability of the chmod method in the Apache Doris backend and frontend request handlers is related to synchronization errors when using shared resources. Exploiting this vulnerability could allow an attacker to compromise the integrity of the protected information...

The vulnerability of Windows Telephony operating systems allows attackers to increase their privileges.

The vulnerability of Windows Telephony operating systems involves synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the print spooler daemon on Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Windows Print Spooler in operating systems related to the print queue is associated with synchronization errors when using shared resources “Race Conditions”. Exploiting this vulnerability can allow attackers to increase their privileges...

PT-2024-2080 · Microsoft · Windows Print Spooler +1

Name of the Vulnerable Software and Affected Versions: Windows Print Spooler affected versions not specified Description: The issue is related to synchronization errors in the Windows Print Spooler, specifically a "race condition" that can be exploited to elevate privileges. This could allow an...

PT-2024-2284 · Microsoft · Windows Telephony Service +1

Name of the Vulnerable Software and Affected Versions: Windows Telephony Server affected versions not specified Description: The issue is related to synchronization errors when using a shared resource in Windows Telephony Server, which can be exploited to elevate privileges. An...

The vulnerability of the Microsoft Dynamics 365 Business Central software for small and medium-sized businesses lies in synchronization errors when using shared resources, allowing attackers to escalate their privileges.

The vulnerability of the Microsoft Dynamics 365 Business Central software for small and medium-sized businesses is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to increase their privileges through a specially created link...

ROS-20240226-01

A vulnerability in the mustmkdirandopenwithperms function of the snap-confine utility is related to synchronization errors when using a shared resource "Race Situation". Exploitation of the vulnerability could allow an attacker to escalate privileges or execute arbitrary code...

The vulnerability of the Windows Message Queuing system, which allows a hacker to escalate their privileges

The vulnerability of Windows’ Message Queuing system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the BuildKit container-building software relates to synchronization errors when using a shared resource. This “race condition” allows a malicious actor to gain unauthorized access to container files on the host system.

The vulnerability of the BuildKit container-building software is related to synchronization errors when using a shared resource. This “race condition” allows a malicious actor to gain unauthorized access to container files on the host system...

The vulnerability of the DevmemIntAcquireRemoteCtx() function in the PowerVR GPU driver for Android and ChromeOS allows a hacker to execute arbitrary code and gain elevated privileges.

The vulnerability of the DevmemIntAcquireRemoteCtx function in the PowerVR GPU driver for Android and ChromeOS systems is related to synchronization errors when using shared resources. Exploiting this vulnerability allows an attacker to execute arbitrary code and gain elevated privileges...