Vulnerabilities > Improper Locking

DATE CVE VULNERABILITY TITLE RISK
2023-01-13 CVE-2023-22412 Improper Locking vulnerability in Juniper Junos
An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series with MS-MPC or MS-MIC card and SRX Series allows an unauthenticated, network-based attacker to cause a flow processing daemon (flowd) crash and thereby a Denial of Service (DoS).
network
low complexity
juniper CWE-667
7.5
2023-01-04 CVE-2022-48216 Improper Locking vulnerability in Uniswap Universal Router Firmware
Uniswap Universal Router before 1.1.0 mishandles reentrancy.
network
high complexity
uniswap CWE-667
7.5
2022-12-26 CVE-2021-43395 Improper Locking vulnerability in multiple products
An issue was discovered in illumos before f859e7171bb5db34321e45585839c6c3200ebb90, OmniOS Community Edition r151038, OpenIndiana Hipster 2021.04, and SmartOS 20210923.
5.5
2022-12-16 CVE-2022-20566 Improper Locking vulnerability in Google Android
In l2cap_chan_put of l2cap_core, there is a possible use after free due to improper locking.
local
low complexity
google CWE-667
7.8
2022-12-13 CVE-2022-3996 Improper Locking vulnerability in Openssl
If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively.
network
low complexity
openssl CWE-667
7.5
2022-12-07 CVE-2022-42328 Improper Locking vulnerability in multiple products
Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] The patch for XSA-392 introduced another issue which might result in a deadlock when trying to free the SKB of a packet dropped due to the XSA-392 handling (CVE-2022-42328).
local
low complexity
linux debian CWE-667
5.5
2022-12-07 CVE-2022-42329 Improper Locking vulnerability in multiple products
Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] The patch for XSA-392 introduced another issue which might result in a deadlock when trying to free the SKB of a packet dropped due to the XSA-392 handling (CVE-2022-42328).
local
low complexity
linux debian CWE-667
5.5
2022-12-06 CVE-2022-39131 Improper Locking vulnerability in Google Android 10.0/11.0/12.0
In camera driver, there is a possible memory corruption due to improper locking.
local
low complexity
google CWE-667
5.5
2022-12-06 CVE-2022-42775 Improper Locking vulnerability in Google Android 10.0/11.0/12.0
In camera driver, there is a possible memory corruption due to improper locking.
local
low complexity
google CWE-667
5.5
2022-11-28 CVE-2022-4129 Improper Locking vulnerability in multiple products
A flaw was found in the Linux kernel's Layer 2 Tunneling Protocol (L2TP).
local
low complexity
linux fedoraproject CWE-667
5.5