CWE:
 

Tytuł
Data
Autor
Med.
Linux expand_downwards() / munmap() Race Condition
15.09.2020
Jann Horn
High
Linux 5.6 IORING_OP_MADVISE Race Condition
11.05.2020
Jann Horn
High
XNU Missing Locking Race Condition
06.11.2019
Jann Horn
High
Apple Mac OS X Feedback Assistant Race Condition (Metasploit)
26.05.2019
timwr
Med.
Mac OS X Feedback Assistant Race Condition
22.05.2019
timwr
Med.
WebKitGTK+ ThreadedCompositor Race Condition
10.04.2019
Anonymouse
High
Synology Photo Station 6.8.2-3461 SYNOPHOTO_Flickr_MultiUpload Race Condition File Write Remote Code Execution
16.01.2018
mr_me
Med.
Check_MK 1.2.8p25 Information Disclosure
21.10.2017
Julien Ahrens
Med.
Apple PCIe Message Ring Protocol Race Conditions
24.09.2017
laginimaineb
High
Sudo get_process_ttyname() Race Condition
03.06.2017
Qualys
Med.
Android sec_ts Touchscreen Race Condition
19.01.2017
laginimaineb
Med.
Teradata Studio Express 15.12.00.00 Race Condition
20.11.2016
Larry W. Cashdollar
Med.
WordPress W3 Total Cache 0.9.4.1 Race Condition
12.11.2016
Sipke Mellema
High
Linux 4.6 Double-Fetch Race Condition / Buffer Overflow
06.07.2016
Pengfei Wang
Med.
IBM Installation Manager 1.8.1 Race Condition
12.11.2015
Larry W. Cashdollar
Med.
Linux PolicyKit Race Condition Privilege Escalation
19.10.2014
xi4oyu
Med.
Apache Scoreboard / Status Race Condition
22.07.2014
Marek Kroemeke
Low
SUNWbindr Race Condition
21.07.2012
Larry Cashdollar
High
Testtrack for Linux Race Condition
21.03.2012
Simon
Med.
PolicyKit Pwnage linux local privilege escalation on polkit-1 <= 0.101
10.10.2011
zx2c4
Med.
Ubuntu Linux \'mountall\' Local Privilege Escalation Vulnerability
23.09.2010
fuzz
Med.
Microsoft Windows nt!NtCreateThread Race Condition (MS10-047)
23.08.2010
Tavis Ormandy
Med.
Microsoft Windows nt!NtCreateThread Race Condition (MS10-047)
18.08.2010
Tavis Ormandy
Med.
Deliver 2.1.14 Multiple vulnerabilities
30.03.2010
Dan Rosenberg
High
Microsoft SMB Client Pool Overflow (MS10-006)
16.02.2010
Laurent Gaffi, Renaud...
High
linux kernel 2.6.25.15 fs: pipe.c null pointer dereference
06.11.2009
Eugene Teo eugene
Med.
RADactive I-Load Multiple Vulnerabilities
01.10.2009
Stefan Streichsbier
Med.
FreeBSD <= 6.1 kqueue() NULL pointer dereference
23.08.2009
Przemyslaw Frasunek
High
Linux kernel 2.6.18: do_coredump() vs ptrace_start() deadlock
07.07.2009
Eugene Teo
Med.
samba samba-client samba-server samba-swat Denial of Service
09.05.2009
rPath
Med.
Mac OS X xnu <=1228.x (vfssysctl) Local Kernel DoS PoC
05.04.2009
mu-b
Low
BSOD in Win 2k3, Vista x86 and x64 by nonpriviledged user
13.11.2008
support killprog com
Low
Move utrace into task_struct
02.07.2008
Alexey Dobriyan


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2020-09-13
Medium
CVE-2020-25285

Vendor: Linux
Software: Linux kernel
 

 
A race condition between hugetlb sysctl handlers in mm/hugetlb.c in the Linux kernel before 5.8.8 could be used by local attackers to corrupt memory, cause a NULL pointer dereference, or possibly have unspecified other impact, aka CID-17743798d812.

 
2020-09-10
Low
CVE-2020-24655

Vendor: Twilio
Software: Authy 2-fact...
 

 
A race condition in the Twilio Authy 2-Factor Authentication application before 24.3.7 for Android allows a user to potentially approve/deny an access request prior to unlocking the application with a PIN on older Android devices (effectively bypassing the PIN requirement).

 
2020-08-21
Medium
CVE-2020-15309

Vendor: Wolfssl
Software: Wolfssl
 

 
An issue was discovered in wolfSSL before 4.5.0, when single precision is not employed. Local attackers can conduct a cache-timing attack against public key operations. These attackers may already have obtained sensitive information if the affected system has been used for private key operations (e.g., signing with a private key).

 
2020-08-13
Medium
CVE-2020-8680

Vendor: Intel
Software: Graphics drivers
 

 
Race condition in some Intel(R) Graphics Drivers before version 15.40.45.5126 may allow an authenticated user to potentially enable escalation of privilege via local access.

 
Low
CVE-2020-0554

Updating...
 

 
Race condition in software installer for some Intel(R) Wireless Bluetooth(R) products on Windows* 7, 8.1 and 10 may allow an unprivileged user to potentially enable escalation of privilege via local access.

 
2020-07-29
Medium
CVE-2020-15706

Vendor: GNU
Software: Grub2
 

 
GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.

 
Medium
CVE-2020-15707

Vendor: GNU
Software: Grub2
 

 
Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.

 
2020-07-17
Low
CVE-2020-1641

Vendor: Juniper
Software: Junos
 

 
A Race Condition vulnerability in Juniper Networks Junos OS LLDP implementation allows an attacker to cause LLDP to crash leading to a Denial of Service (DoS). This issue occurs when crafted LLDP packets are received by the device from an adjacent device. Multiple LACP flaps will occur after LLDP crashes. An indicator of compromise is to evaluate log file details for lldp with RLIMIT. Intervention should occur before 85% threshold of used KB versus maximum available KB memory is reached. show log messages | match RLIMIT | match lldp | last 20 Matching statement is " /kernel: %KERNEL-[number]: Process ([pid #],lldpd) has exceeded 85% of RLIMIT_DATA: " with [] as variable data to evaluate for. This issue affects: Juniper Networks Junos OS: 12.3 versions prior to 12.3R12-S15; 12.3X48 versions prior to 12.3X48-D95; 15.1 versions prior to 15.1R7-S6; 15.1X49 versions prior to 15.1X49-D200; 15.1X53 versions prior to 15.1X53-D593; 16.1 versions prior to 16.1R7-S7; 17.1 versions prior to 17.1R2-S11, 17.1R3-S2; 17.2 versions prior to 17.2R1-S9, 17.2R3-S3; 17.3 versions prior to 17.3R2-S5, 17.3R3-S6; 17.4 versions prior to 17.4R2-S4, 17.4R3; 18.1 versions prior to 18.1R3-S5; 18.2 versions prior to 18.2R2-S7, 18.2R3; 18.2X75 versions prior to 18.2X75-D12, 18.2X75-D33, 18.2X75-D50, 18.2X75-D420; 18.3 versions prior to 18.3R1-S7, 18.3R2-S3, 18.3R3; 18.4 versions prior to 18.4R1-S5, 18.4R2; 19.1 versions prior to 19.1R1-S4, 19.1R2.

 
Low
CVE-2020-15586

Vendor: Golang
Software: GO
 

 
Go before 1.13.13 and 1.14.x before 1.14.5 has a data race in some net/http servers, as demonstrated by the httputil.ReverseProxy Handler, because it reads a request body and writes a response at the same time.

 
2020-07-06
Low
CVE-2020-1839

Updating...
 

 
HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a race condition vulnerability. There is a timing window exists in which certain pointer members can be modified by another process that is operating concurrently, an attacker should trick the user into running a crafted application with high privilege, successful exploit could cause code execution.

 

 


Copyright 2020, cxsecurity.com

 

Back to Top