Lucene search
K

151 matches found

ATTACKERKB
ATTACKERKB
added 4 days ago7 views

CVE-2026-57029

A Missing Synchronization vulnerability in the flow collector handler of Juniper Networks Junos OS Evolved on QFX Series allows an adjacent, unauthenticated attacker to cause a Denial-of-Service DoS. When the reachability of an sFlow collector changes, the corresponding next-hop entry is...

6CVSS6AI score0.0019EPSS
Exploits0References2Affected Software1
CVE
CVE
added 4 days ago14 views

CVE-2026-57029

CVE-2026-57029 describes a missing synchronization vulnerability in the flow collector handler of Junos OS Evolved on QFX Series. When the reachability of an sFlow collector changes, updating the next-hop entry can race with the sFlow thread accessing the same data, causing the evo-pfemand proces...

6CVSS6AI score0.0019EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/07/06 9:16 p.m.6 views

CVE-2025-59615

Memory Corruption when invoking device input/output control operations for mapping and unmapping persistent memory buffers due to improper synchronization...

7.8CVSS0.00064EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/06 8:9 p.m.4 views

EUVD-2025-210436

Memory Corruption when invoking device input/output control operations for mapping and unmapping persistent memory buffers due to improper synchronization...

6.6CVSS6AI score0.00064EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/07/06 8:9 p.m.6 views

CVE-2025-59615 Use After Free in Computer Vision

Memory Corruption when invoking device input/output control operations for mapping and unmapping persistent memory buffers due to improper synchronization...

6.6CVSS6AI score0.00064EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/28 10:45 a.m.9 views

CVE-2026-13489

A weakness has been identified in 78 xiaozhi-esp32 up to 2.2.6. Affected by this issue is the function ParseMessage of the file main/mcpserver.cc of the component MCP Response Handler. This manipulation causes improper synchronization. Remote exploitation of the attack is possible. The attack's...

3.1CVSS5.1AI score0.00228EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2026/06/18 2:17 p.m.11 views

CVE-2026-42487

HVM guest I/O port accesses are subject to either emulation or at least translation. Translations are managed by the device model via XENDOMCTLioportmapping, and hence the linked list used may changed at any time. Traversal of those lists while handling guest I/O port accesses therefore needs...

7.9CVSS0.00095EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Handle the deactivation of DBCs when the owner leaves. When a DBC is released, the device sends a QAICTRANSDEACTIVATEFROMDEV transaction to the host via the QAICCONTROL MHI channel. QAIC handles this by calling...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in Qemu

A flaw was discovered in the QEMU NBD Server. This vulnerability allows for a Denial-of-Service DoS attack through improper synchronization during socket closure, where a client keeps a socket open while the server is offline...

7.5CVSS7AI score0.01027EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.20 views

PT-2026-40164

Name of the Vulnerable Software and Affected Versions Windows Ancillary Function Driver for WinSock affected versions not specified Description A race condition occurs in the Windows Ancillary Function Driver for WinSock due to improper synchronization when using a shared resource. This allows an...

7CVSS5.8AI score0.00204EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.14 views

PT-2026-40146

Name of the Vulnerable Software and Affected Versions Windows Win32K - GRFX affected versions not specified Description A race condition occurs in Windows Win32K - GRFX due to improper synchronization when using a shared resource. This allows an authorized attacker to elevate privileges locally t...

7CVSS5.8AI score0.0019EPSS
Exploits0References8
Snyk
Snyk
added 2026/04/20 6:31 a.m.3 views

Incorrect Synchronization

Overview fschat is an An open platform for training, serving, and evaluating large language model based chatbots. Affected versions of this package are vulnerable to Incorrect Synchronization in the form of synchronous invocation of the apigenerate and generategate functions in the Worker API. An...

8.7CVSS5.6AI score0.00623EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/15 7:23 p.m.5 views

CVE-2026-27927

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Projected File System allows an authorized attacker to elevate privileges locally...

7.8CVSS5.9AI score0.00191EPSS
Exploits0References1
OSV
OSV
added 2026/04/14 5:8 p.m.8 views

SUSE-SU-2026:1330-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2026-33999: XKB Integer Underflow in XkbSetCompatMap bsc1260922. - CVE-2026-34000: XKB Out-of-bounds Read in CheckSetGeom bsc1260923. - CVE-2026-34001: XSYNC Use-after-free in miSyncTriggerFence bsc1260924. - CVE-2026-34002: XKB...

9.1CVSS5.8AI score0.00489EPSS
Exploits0References11
Redos
Redos
added 2026/04/03 12:0 a.m.8 views

ROS-20260403-73-0024

A vulnerability in the hvnetvsc component of the Linux operating system kernel is related to a lack of synchronization. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6.1AI score0.00159EPSS
Exploits0
NVD
NVD
added 2026/03/10 6:18 p.m.5 views

CVE-2026-24296

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Device Association Service allows an authorized attacker to elevate privileges locally...

7CVSS0.00205EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.7 views

RHEL 9 : kernel (RHSA-2026:3692)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:3692 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: scsi: mpi3mr: Synchronous access b/w...

7.8CVSS6AI score0.00262EPSS
Exploits0References5
Redos
Redos
added 2026/03/04 12:0 a.m.6 views

ROS-20260304-73-0003

A vulnerability in the etsqdiscchange function of the netsched component of the Linux kernel is related to simultaneous execution using a shared resource with incorrect synchronization. Exploitation of the vulnerability allows an attacker to cause a denial of service...

7CVSS7.3AI score0.00126EPSS
Exploits0
Cvelist
Cvelist
added 2026/02/25 8:36 p.m.27 views

CVE-2026-25959 FreeRDP has heap-use-after-free in xf_cliprdr_provide_data_

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfcliprdrprovidedata passes freed pDstData to XChangeProperty because the cliprdr channel thread calls xfcliprdrserverformatdataresponse which converts and uses the clipboard data without holding any lock,...

6.9CVSS0.00567EPSS
Exploits1References9
Snyk
Snyk
added 2026/02/17 9:27 p.m.4 views

Race Condition

Overview Affected versions of this package are vulnerable to Race Condition in which maps from multiple components may be accessed without synchronization. When under heavy concurrent activity, either spontaneous or attacker-generated, the process can be caused to panic and crash with fatal error...

7.5CVSS5.5AI score0.00291EPSS
Exploits1References2
Rows per page
Query Builder