Lucene search
K

9 matches found

OSV
OSV
added 2025/10/14 5:16 p.m.5 views

CVE-2025-59282

Concurrent execution using shared resource with improper synchronization 'race condition' in Inbox COM Objects allows an unauthorized attacker to execute code locally...

7CVSS6AI score0.00575EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.7 views

The vulnerability of the net/core/dev.c component in the Linux operating system’s kernel allows a hacker to gain access to confidential data.

The vulnerability in the net/core/dev.c component of the Linux operating system’s kernel involves the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

5.5CVSS6.1AI score0.00208EPSS
Exploits0References16Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/09/23 12:0 a.m.5 views

The vulnerability of Crossbeam Utils, a parallel programming tool, on 32-bit systems arises from the simultaneous execution using a shared resource with improper synchronization. This allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of CrossbeamUtils, a parallel programming tool, on 32-bit systems is related to the inconsistency between the arithmetic operations i,u64 and AtomicI,U64. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause...

9.3CVSS7.5AI score0.01239EPSS
Exploits1References6Affected Software2
CNNVD
CNNVD
added 2022/07/06 12:0 a.m.5 views

Google Android 竞争条件问题漏洞

Google Android is a Linux-based open source operating system from Google. A security vulnerability exists in Google Android, which arises from the concurrent execution of competing conditions in the GPU using incorrectly synchronized shared resources, and can be exploited by an attacker to remote...

7CVSS7.4AI score0.00083EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2021/10/21 12:0 a.m.5 views

The vulnerabilities of the functions “Stealer::steal”, “Stealer::steal_batch”, and “Stealer::steal_batch_and_pop” in Mozilla Firefox, Firefox ESR, and the email client Thunderbird allow a malicious actor to execute arbitrary code.

The vulnerability of the functions “Stealer::steal”, “Stealer::stealbatch”, and “Stealer::stealbatchandpop” in browsers Mozilla Firefox, Firefox ESR, and the email client Thunderbird arises due to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this...

10CVSS8.2AI score0.01923EPSS
Exploits0References10Affected Software8
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.8 views

The vulnerability of the Prosody Jabber/XMPP server lies in the simultaneous execution using a shared resource with incorrect synchronization, allowing an attacker to gain access to confidential data.

The vulnerability of the Prosody Jabber/XMPP server is related to the use of an algorithm with non-persistent execution time for comparing secret strings. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data...

5.9CVSS6.3AI score0.01601EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/04/13 12:0 a.m.6 views

The vulnerability of Xen hypervisors arises from the simultaneous execution using a shared resource with incorrect synchronization. This allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of Xen hypervisors relates to the simultaneous use of common resources. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data, compromise its integrity, and cause service failures...

8.5CVSS6.8AI score0.01187EPSS
Exploits0References9Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/04/13 12:0 a.m.5 views

The vulnerability of the BIND DNS server, related to the simultaneous execution using a shared resource with incorrect synchronization, allows attackers to cause service failures.

The vulnerability of the BIND DNS server is related to an error in processing distorted packets, which can lead to out-of-memory situations. Exploiting this vulnerability allows a remote attacker to cause a service failure...

7.1CVSS6.6AI score0.03271EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2019/07/16 12:0 a.m.4 views

The vulnerability of the daemon/gvfsbackendadmin.c component of the GVFS subsystem in GNOME desktop environments on Linux operating systems allows a attacker to compromise the integrity, confidentiality, and accessibility of the protected information.

The vulnerability of the daemon/gvfsbackendadmin.c component in the GVFS subsystem of GNOME desktop environments on Linux operating systems arises from the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability allows an attacker to compromise...

8.1CVSS5.7AI score0.01749EPSS
Exploits0References5Affected Software3
Rows per page
Query Builder