CWE-362 (使用共享资源的并发执行不恰当同步问题(竞争条件)) — Vulnerability Class 417

417 vulnerabilities classified as CWE-362 (使用共享资源的并发执行不恰当同步问题(竞争条件)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-42488	Cilium agent's race condition may lead to policy bypass for Host Firewall policy — cilium	6.8	Medium	2024-08-15
CVE-2024-27267	IBM SDK, Java Technology Edition denial of service — SDK, Java Technology Edition	5.9	Medium	2024-08-14
CVE-2024-38191	Kernel Streaming Service Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809	7.8	High	2024-08-13
CVE-2024-6996	Google Chrome 安全漏洞 — Chrome	3.1^AI	Low^AI	2024-08-06
CVE-2024-6778	Google Chrome 安全漏洞 — Chrome	6.9^AI	Medium^AI	2024-07-16
CVE-2024-39554	Junos OS and Junos OS Evolved: BGP multipath incremental calculation is resulting in an rpd crash — Junos OS	5.9	Medium	2024-07-10
CVE-2024-35255	Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability — Azure Identity Library for .NET	5.5	Medium	2024-06-11
CVE-2024-28999	SolarWinds Platform Race Condition Vulnerability — SolarWinds Platform	6.4	Medium	2024-06-04
CVE-2024-30046	Visual Studio Denial of Service Vulnerability — .NET 7.0	5.9	Medium	2024-05-14
CVE-2023-52720	Huawei HarmonyOS 安全漏洞 — HarmonyOS	4.1	Medium	2024-05-11
CVE-2024-32997	Huawei HarmonyOS 安全漏洞 — HarmonyOS	8.4	High	2024-05-11
CVE-2024-32993	Huawei HarmonyOS 安全漏洞 — HarmonyOS	5.6	Medium	2024-05-11
CVE-2024-32985	Stellar-core's Overlay - security fix for DDoS mitigation — stellar-core	5.9	Medium	2024-05-09
CVE-2023-27359	TP-Link AX1800 hotplugd Firewall Rule Race Condition Vulnerability — AX1800	8.1	-	2024-05-03
CVE-2023-37244	Privilege escalation in N-Able's AutomationManagerAgent — AutomationManagerAgent	5.3	Medium	2024-05-02
CVE-2024-3979	COVESA vsomeip race condition — vsomeip	4.4	Medium	2024-04-19
CVE-2023-3758	Sssd: race condition during authorization leads to gpo policies functioning inconsistently	7.1	High	2024-04-18
CVE-2023-52553	Huawei HarmonyOS 安全漏洞 — HarmonyOS	5.9^AI	Medium^AI	2024-04-08
CVE-2024-26307	Apache Doris: Possible race condition — Apache Doris	6.5^AI	Medium^AI	2024-03-21
CVE-2024-24770	Username timing attack on recover password/MFA token in vantage6 — vantage6	5.3	Medium	2024-03-14
CVE-2024-26578	Apache Answer: Repeated submission at registration created duplicate users with the same name — Apache Answer	7.4	-	2024-02-22
CVE-2023-47634	Decidim has race condition in Endorsements — decidim	3.1	Low	2024-02-20
CVE-2024-24864	Race condition vulnerability in Linux kernel media/dvb-core in dvbdmx_write() — Linux kernel	5.3	Medium	2024-02-05
CVE-2024-24857	Race condition vulnerability in Linux kernel bluetooth in conn_info_{min,max}_age_set() — Linux kernel	4.6	Medium	2024-02-05
CVE-2024-24858	Race condition vulnerability in Linux kernel net/bluetooth in {conn,adv}_{min,max}_interval_set() — Linux kernel	4.6	Medium	2024-02-05
CVE-2024-24859	Race condition vulnerability in Linux kernel bluetooth sniff_{min,max}_interval_set() — Linux kernel	4.6	Medium	2024-02-05
CVE-2024-24860	Race condition vulnerability in Linux kernel bluetooth driver in {min,max}_key_size_set() — Linux kernel	4.6	Medium	2024-02-05
CVE-2024-24861	Race condition vulnerability in Linux kernel media/xc4000 xc4000_get_frequency() — Linux kernel	3.3	Low	2024-02-05
CVE-2024-24855	Race condition vulnerability in Linux kernel scsi device driver lpfc_unregister_fcf_rescan() — Linux kernel	5.0	Medium	2024-02-05
CVE-2024-23196	Race condition vulnerability in Linux kernel sound/hda snd_hdac_regmap_sync — Linux kernel	5.3	Medium	2024-02-05

Vulnerabilities classified as CWE-362 (使用共享资源的并发执行不恰当同步问题(竞争条件)) represent 417 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-362 (使用共享资源的并发执行不恰当同步问题(竞争条件)) — Vulnerability Class 417