Vulnerabilities > Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

DATE CVE VULNERABILITY TITLE RISK
2017-07-17 CVE-2016-0764 Race Condition vulnerability in Redhat Networkmanager
Race condition in Network Manager before 1.0.12 as packaged in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Linux Server 7, and Red Hat Enterprise Linux Workstation 7 allows local users to obtain sensitive connection information by reading temporary files during ifcfg and keyfile changes.
local
low complexity
redhat CWE-362
6.2
2017-07-07 CVE-2014-7953 Race Condition vulnerability in Google Android 4.4.4
Race condition in the bindBackupAgent method in the ActivityManagerService in Android 4.4.4 allows local users with adb shell access to execute arbitrary code or any valid package as system by running "pm install" with the target apk, and simultaneously running a crafted script to process logcat's output looking for a dexopt line, which once found should execute bindBackupAgent with the uid member of the ApplicationInfo parameter set to 1000.
local
high complexity
google CWE-362
7.0
2017-07-05 CVE-2017-10915 Race Condition vulnerability in XEN
The shadow-paging feature in Xen through 4.8.x mismanages page references and consequently introduces a race condition, which allows guest OS users to obtain Xen privileges, aka XSA-219.
network
high complexity
xen CWE-362
critical
9.0
2017-06-13 CVE-2017-8242 Race Condition vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a race condition exists in a QTEE driver potentially leading to an arbitrary memory write.
network
high complexity
google CWE-362
5.9
2017-06-13 CVE-2017-7372 Race Condition vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a race condition exists in a video driver potentially leading to buffer overflow or write to arbitrary pointer location.
local
high complexity
google CWE-362
7.0
2017-06-13 CVE-2017-7368 Race Condition vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a race condition potentially exists in the ioctl handler of a sound driver.
local
high complexity
google CWE-362
7.0
2017-06-13 CVE-2015-9022 Race Condition vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, time-of-check Time-of-use (TOCTOU) Race Conditions exist in several TZ APIs.
local
high complexity
google CWE-362
7.0
2017-06-13 CVE-2014-9966 Race Condition vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists in Secure Display.
local
high complexity
google CWE-362
7.0
2017-06-07 CVE-2015-5232 Race Condition vulnerability in Cornelisnetworks Opa-Ff and Opa-Fm
Race conditions in opa-fm before 10.4.0.0.196 and opa-ff before 10.4.0.0.197.
network
high complexity
cornelisnetworks CWE-362
8.1
2017-06-06 CVE-2016-10297 Race Condition vulnerability in Google Android
In TrustZone in all Android releases from CAF using the Linux kernel, a Time-of-Check Time-of-Use Race Condition vulnerability could potentially exist.
local
high complexity
google CWE-362
7.0