Vulnerabilities > Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-11 | CVE-2019-6133 | Race Condition vulnerability in multiple products In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore authorization decisions are improperly cached. | 4.4 |
| 2019-01-09 | CVE-2018-6158 | Race Condition vulnerability in multiple products A race condition in Oilpan in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 7.5 |
| 2019-01-09 | CVE-2018-16079 | Race Condition vulnerability in multiple products A race condition between permission prompts and navigations in Prompts in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. | 5.3 |
| 2019-01-09 | CVE-2017-15405 | Race Condition vulnerability in Google Chrome Inappropriate symlink handling and a race condition in the stateful recovery feature implementation could lead to a persistance established by a malicious code running with root privileges in cryptohomed in Google Chrome on Chrome OS prior to 61.0.3163.113 allowed a local attacker to execute arbitrary code via a crafted HTML page. | 7.0 |
| 2018-12-20 | CVE-2018-5198 | Race Condition vulnerability in Wizvera Veraport G3 In Veraport G3 ALL on MacOS, a race condition when calling the Veraport API allow remote attacker to cause arbitrary file download and execution. | 8.1 |
| 2018-12-13 | CVE-2018-19489 | Race Condition vulnerability in multiple products v9fs_wstat in hw/9pfs/9p.c in QEMU allows guest OS users to cause a denial of service (crash) because of a race condition during file renaming. | 4.7 |
| 2018-12-12 | CVE-2018-16867 | Race Condition vulnerability in multiple products A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. | 7.8 |
| 2018-12-07 | CVE-2018-9519 | Race Condition vulnerability in Google Android In easelcomm_hw_build_scatterlist, there is a possible out of bounds write due to a race condition. | 6.9 |
| 2018-12-06 | CVE-2018-15332 | Race Condition vulnerability in F5 products The svpn component of the F5 BIG-IP APM client prior to version 7.1.7.2 for Linux and macOS runs as a privileged process and can allow an unprivileged user to get ownership of files owned by root on the local client host in a race condition. | 4.4 |
| 2018-11-28 | CVE-2018-19370 | Race Condition vulnerability in Yoast SEO A Race condition vulnerability in unzip_file in admin/import/class-import-settings.php in the Yoast SEO (wordpress-seo) plugin before 9.2.0 for WordPress allows an SEO Manager to perform command execution on the Operating System via a ZIP import. | 6.0 |