Vulnerabilities > Improper Locking

DATE CVE VULNERABILITY TITLE RISK
2020-10-14 CVE-2020-0420 Improper Locking vulnerability in Google Android 11.0
In setUpdatableDriverPath of GpuService.cpp, there is a possible memory corruption due to a missing permission check.
local
low complexity
google CWE-667
7.2
2020-10-01 CVE-2020-15668 Improper Locking vulnerability in Mozilla Firefox
A lock was missing when accessing a data structure and importing certificate information into the trust database.
network
mozilla CWE-667
4.3
2020-09-17 CVE-2020-0357 Improper Locking vulnerability in Google Android 11.0
In SurfaceFlinger, there is a possible use-after-free due to improper locking.
local
low complexity
google CWE-667
4.6
2020-08-24 CVE-2020-24606 Improper Locking vulnerability in multiple products
Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message.
7.5
2020-05-20 CVE-2020-13246 Improper Locking vulnerability in Gitea
An issue was discovered in Gitea through 1.11.5.
network
low complexity
gitea CWE-667
5.0
2020-05-09 CVE-2020-12771 Improper Locking vulnerability in multiple products
An issue was discovered in the Linux kernel through 5.6.11.
4.9
2020-05-08 CVE-2019-14898 Improper Locking vulnerability in multiple products
The fix for CVE-2019-11599, affecting the Linux kernel before 5.0.10 was not complete.
local
high complexity
linux redhat CWE-667
7.0
2020-03-14 CVE-2020-10573 Improper Locking vulnerability in Meetecho Janus
An issue was discovered in Janus through 0.9.1.
network
low complexity
meetecho CWE-667
5.0
2019-12-10 CVE-2019-13762 Improper Locking vulnerability in multiple products
Insufficient policy enforcement in downloads in Google Chrome on Windows prior to 79.0.3945.79 allowed a local attacker to spoof downloaded files via local code.
local
low complexity
google debian fedoraproject redhat CWE-667
3.3
2019-10-08 CVE-2019-17343 Improper Locking vulnerability in multiple products
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging incorrect use of the HVM physmap concept for PV domains.
local
low complexity
xen debian CWE-667
4.6