Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
race condition vulnerabilities and exploits
(subscribe to this query)
7
CVSSv3
CVE-2017-7004
An issue exists in certain Apple products. iOS prior to 10.3.2 is affected. macOS prior to 10.12.5 is affected. The issue involves the "Security" component. A race condition allows malicious users to bypass intended entitlement restrictions for sending XPC messages via ...
Apple Mac Os X
Apple Iphone Os
1 EDB exploit
NA
CVE-2005-0953
Race condition in bzip2 1.0.2 and previous versions allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.
Bzip Bzip2 0.9.5 D
Bzip Bzip2 0.9 A
Bzip Bzip2 0.9
Bzip Bzip2 0.9.5 A
Bzip Bzip2 1.0
Bzip Bzip2 1.0.1
Bzip Bzip2 1.0.2
Bzip Bzip2 0.9.5 B
Bzip Bzip2 0.9.5 C
Bzip Bzip2 0.9 B
Bzip Bzip2 0.9 C
6.8
CVSSv3
CVE-2022-47632
Razer Synapse prior to 3.7.0830.081906 allows privilege escalation due to an unsafe installation path, improper privilege management, and improper certificate validation. Attackers can place malicious DLLs into %PROGRAMDATA%\Razer\Synapse3\Service\bin if they do so before the ser...
Razer Synapse
NA
CVE-2014-8273
CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')A race condition exists in Intel chipsets that rely solely on the BIOS_CNTL.BIOSWE and BIOS_CNTL.BLE bits as a BIOS write locking mechanism. According to Corey Kallenberg...
1 Github repository
NA
CVE-2007-5794
Race condition in nss_ldap, when used in applications that are linked against the pthread library and fork after a call to nss_ldap, might send user data to the wrong process because of improper handling of the LDAP connection. NOTE: this issue was originally reported for Dovecot...
Nss Ldap Nss Ldap
5.1
CVSSv3
CVE-2021-31797
The user identification mechanism used by CyberArk Credential Provider before 12.1 is susceptible to a local host race condition, leading to password disclosure.
Cyberark Credential Provider
NA
CVE-1999-0351
FTP PASV "Pizza Thief" denial of service and unauthorized data access. Attackers can steal data by connecting to a port that was intended for use by a client.
Ftp Ftp Pasv
5.5
CVSSv3
CVE-2021-3995
A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows an unprivileged local malicious user to unmount FUSE filesystems that belong to certain other users who have a UID that is...
Kernel Util-linux
Fedoraproject Fedora 35
1 Github repository
5.5
CVSSv3
CVE-2021-3996
A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows a local user on a vulnerable system to unmount other users' filesystems that are either world-writable themselves (li...
Kernel Util-linux
Fedoraproject Fedora 35
1 Github repository
8.1
CVSSv3
CVE-2021-26569
Race Condition within a Thread vulnerability in iscsi_snapshot_comm_core in Synology DiskStation Manager (DSM) prior to 6.2.3-25426-3 allows remote malicious users to execute arbitrary code via crafted web requests.
Synology Diskstation Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »