Vulnerabilities > Improper Locking

DATE CVE VULNERABILITY TITLE RISK
2019-10-08 CVE-2019-17343 Improper Locking vulnerability in multiple products
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging incorrect use of the HVM physmap concept for PV domains.
low complexity
xen debian CWE-667
6.8
2019-09-27 CVE-2019-9268 Improper Locking vulnerability in Google Android 10.0
In libstagefright, there is a possible use-after-free due to improper locking.
local
low complexity
google CWE-667
5.5
2019-09-06 CVE-2019-9447 Improper Locking vulnerability in Google Android
In the Android kernel in the FingerTipS touchscreen driver there is a possible use-after-free due to improper locking.
local
low complexity
google CWE-667
6.7
2019-09-06 CVE-2019-9275 Improper Locking vulnerability in Google Android
In the Android kernel in the mnh driver there is a use after free due to improper locking.
local
low complexity
google CWE-667
6.7
2019-09-06 CVE-2019-9273 Improper Locking vulnerability in Google Android
In the Android kernel in the synaptics_dsx_htc touchscreen driver there is a possible use after free due to improper locking.
local
low complexity
google CWE-667
6.7
2019-09-05 CVE-2019-2174 Improper Locking vulnerability in Google Android
In SensorManager::assertStateLocked of SensorManager.cpp in Android 7.1.1, 7.1.2, 8.0, 8.1, and 9, there is a possible use after free due to improper locking.
local
low complexity
google CWE-667
7.8
2019-08-23 CVE-2019-15513 Improper Locking vulnerability in multiple products
An issue was discovered in OpenWrt libuci (aka Library for the Unified Configuration Interface) before 15.05.1 as used on Motorola CX2L MWR04L 1.01 and C1 MWR03 1.01 devices.
network
low complexity
openwrt motorola CWE-667
7.5
2019-08-07 CVE-2019-14763 Improper Locking vulnerability in multiple products
In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may potentially cause a deadlock with f_hid.
local
low complexity
linux canonical CWE-667
5.5
2019-07-08 CVE-2019-2119 Improper Locking vulnerability in Google Android 8.0/8.1/9.0
In multiple functions of key_store_service.cpp, there is a possible Information Disclosure due to improper locking.
local
low complexity
google CWE-667
5.5
2019-06-21 CVE-2019-10072 Improper Locking vulnerability in Apache Tomcat
The fix for CVE-2019-0199 was incomplete and did not address HTTP/2 connection window exhaustion on write in Apache Tomcat versions 9.0.0.M1 to 9.0.19 and 8.5.0 to 8.5.40 .
network
low complexity
apache CWE-667
7.5