Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
race condition vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-4089
The bzexe command in bzip2 1.0.5 and previous versions generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory.
Bzip Bzip2 1.0
Bzip Bzip2
Bzip Bzip2 1.0.3
Bzip Bzip2 1.0.2
Bzip Bzip2 1.0.1
1 EDB exploit
NA
CVE-2005-0953
Race condition in bzip2 1.0.2 and previous versions allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.
Bzip Bzip2 1.0
Bzip Bzip2 0.9.5 A
Bzip Bzip2 0.9.5 D
Bzip Bzip2 0.9.5 C
Bzip Bzip2 0.9 A
Bzip Bzip2 0.9 C
Bzip Bzip2 1.0.2
Bzip Bzip2 0.9
Bzip Bzip2 1.0.1
Bzip Bzip2 0.9 B
Bzip Bzip2 0.9.5 B
6.8
CVSSv3
CVE-2022-47632
Razer Synapse prior to 3.7.0830.081906 allows privilege escalation due to an unsafe installation path, improper privilege management, and improper certificate validation. Attackers can place malicious DLLs into %PROGRAMDATA%\Razer\Synapse3\Service\bin if they do so before the ser...
Razer Synapse
NA
CVE-1999-0351
FTP PASV "Pizza Thief" denial of service and unauthorized data access. Attackers can steal data by connecting to a port that was intended for use by a client.
Ftp Ftp Pasv
5.1
CVSSv3
CVE-2021-31797
The user identification mechanism used by CyberArk Credential Provider before 12.1 is susceptible to a local host race condition, leading to password disclosure.
Cyberark Credential Provider
NA
CVE-2014-8273
CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')A race condition exists in Intel chipsets that rely solely on the BIOS_CNTL.BIOSWE and BIOS_CNTL.BLE bits as a BIOS write locking mechanism. According to Corey Kallenberg...
1 Github repository
NA
CVE-2007-5794
Race condition in nss_ldap, when used in applications that are linked against the pthread library and fork after a call to nss_ldap, might send user data to the wrong process because of improper handling of the LDAP connection. NOTE: this issue was originally reported for Dovecot...
Nss Ldap Nss Ldap
5.5
CVSSv3
CVE-2021-3995
A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows an unprivileged local malicious user to unmount FUSE filesystems that belong to certain other users who have a UID that is...
Kernel Util-linux
Fedoraproject Fedora 35
1 Github repository
5.5
CVSSv3
CVE-2021-3996
A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows a local user on a vulnerable system to unmount other users' filesystems that are either world-writable themselves (li...
Kernel Util-linux
Fedoraproject Fedora 35
1 Github repository
NA
CVE-2004-2014
Wget 1.9 and 1.9.1 allows local users to overwrite arbitrary files via a symlink attack on the name of the file being downloaded.
Gnu Wget 1.8.2
Gnu Wget 1.7
Gnu Wget 1.9
Gnu Wget 1.6
Gnu Wget 1.8
Gnu Wget 1.8.1
Gnu Wget 1.9.1
Gnu Wget 1.7.1
Gnu Wget 1.5.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »