Vulnerabilities > Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-16 | CVE-2021-39712 | Race Condition vulnerability in Google Android In TBD of TBD, there is a possible user after free vulnerability due to a race condition. | 6.4 |
| 2022-03-16 | CVE-2021-39713 | Race Condition vulnerability in multiple products Product: AndroidVersions: Android kernelAndroid ID: A-173788806References: Upstream kernel | 7.0 |
| 2022-03-16 | CVE-2021-39727 | Race Condition vulnerability in Google Android In eicPresentationRetrieveEntryValue of acropora/app/identity/libeic/EicPresentation.c, there is a possible information disclosure due to a race condition. | 1.9 |
| 2022-03-16 | CVE-2021-39735 | Race Condition vulnerability in Google Android In gasket_alloc_coherent_memory of gasket_page_table.c, there is a possible memory corruption due to a race condition. | 4.4 |
| 2022-03-16 | CVE-2021-39792 | Race Condition vulnerability in Google Android In usb_gadget_giveback_request of core.c, there is a possible use after free out of bounds read due to a race condition. | 1.9 |
| 2022-03-16 | CVE-2022-24751 | Race Condition vulnerability in Zulip Zulip is an open source group chat application. | 5.8 |
| 2022-03-10 | CVE-2022-23036 | Race Condition vulnerability in multiple products Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. | 7.0 |
| 2022-03-10 | CVE-2022-23037 | Race Condition vulnerability in multiple products Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. | 7.0 |
| 2022-03-10 | CVE-2022-23038 | Race Condition vulnerability in multiple products Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. | 7.0 |
| 2022-03-10 | CVE-2022-23039 | Race Condition vulnerability in multiple products Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. | 7.0 |