Total
1661 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2021-38191 | 1 Tokio | 1 Tokio | 2024-08-04 | 5.9 Medium |
An issue was discovered in the tokio crate before 1.8.1 for Rust. Upon a JoinHandle::abort, a Task may be dropped in the wrong thread. | ||||
CVE-2021-37991 | 2 Debian, Google | 2 Debian Linux, Chrome | 2024-08-04 | 7.5 High |
Race in V8 in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | ||||
CVE-2021-37134 | 1 Huawei | 1 Harmonyos | 2024-08-04 | 8.1 High |
Location-related APIs exists a Race Condition vulnerability.Successful exploitation of this vulnerability may use Higher Permissions for invoking the interface of location-related components. | ||||
CVE-2021-37082 | 1 Huawei | 1 Harmonyos | 2024-08-04 | 5.9 Medium |
There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to motionhub crash. | ||||
CVE-2021-37069 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-08-04 | 7.4 High |
There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to availability affected. | ||||
CVE-2021-37073 | 1 Huawei | 1 Harmonyos | 2024-08-04 | 3.7 Low |
There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to the detection result is tampered with. | ||||
CVE-2021-37085 | 1 Huawei | 1 Harmonyos | 2024-08-04 | 5.9 Medium |
There is a Encoding timing vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of service. | ||||
CVE-2021-37074 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-08-04 | 8.1 High |
There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to the user root privilege escalation. | ||||
CVE-2021-36987 | 1 Huawei | 2 Emui, Magic Ui | 2024-08-04 | 5.9 Medium |
There is a issue that nodes in the linked list being freed for multiple times in Huawei Smartphone due to race conditions. Successful exploitation of this vulnerability can cause the system to restart. | ||||
CVE-2021-36994 | 1 Huawei | 2 Emui, Magic Ui | 2024-08-04 | 3.7 Low |
There is a issue that trustlist strings being repeatedly inserted into the linked list in Huawei Smartphone due to race conditions. Successful exploitation of this vulnerability can cause exceptions when managing the system trustlist. | ||||
CVE-2021-36808 | 1 Sophos | 1 Sophos Secure Workspace | 2024-08-04 | 5.9 Medium |
A local attacker could bypass the app password using a race condition in Sophos Secure Workspace for Android before version 9.7.3115. | ||||
CVE-2021-36532 | 1 Portfoliocms Project | 1 Portfoliocms | 2024-08-04 | 8.1 High |
Race condition vulnerability discovered in portfolioCMS 1.0 allows remote attackers to run arbitrary code via fileExt parameter to localhost/admin/uploads.php. | ||||
CVE-2021-36221 | 6 Debian, Fedoraproject, Golang and 3 more | 15 Debian Linux, Fedora, Go and 12 more | 2024-08-04 | 5.9 Medium |
Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort. | ||||
CVE-2021-36181 | 1 Fortinet | 1 Fortiportal | 2024-08-04 | 3.1 Low |
A concurrent execution using shared resource with improper Synchronization vulnerability ('Race Condition') in the customer database interface of FortiPortal before 6.0.6 may allow an authenticated, low-privilege user to bring the underlying database data into an inconsistent state via specific coordination of web requests. | ||||
CVE-2021-34406 | 2 Google, Nvidia | 2 Android, Shield Experience | 2024-08-04 | 4.7 Medium |
NVIDIA Tegra kernel driver contains a vulnerability in NVHost, where a specific race condition can lead to a null pointer dereference, which may lead to a system reboot. | ||||
CVE-2021-34462 | 1 Microsoft | 11 Windows 10, Windows 10 1507, Windows 10 1607 and 8 more | 2024-08-04 | 7 High |
Windows AppX Deployment Extensions Elevation of Privilege Vulnerability | ||||
CVE-2021-33075 | 1 Intel | 14 Optane Memory H10 With Solid State Storage, Optane Memory H10 With Solid State Storage Firmware, Optane Memory H20 With Solid State Storage and 11 more | 2024-08-03 | 4.7 Medium |
Race condition in firmware for some Intel(R) Optane(TM) SSD, Intel(R) Optane(TM) SSD DC and Intel(R) SSD DC Products may allow a privileged user to potentially enable denial of service via local access. | ||||
CVE-2021-33078 | 1 Intel | 14 Optane Memory H10 With Solid State Storage, Optane Memory H10 With Solid State Storage Firmware, Optane Memory H20 With Solid State Storage and 11 more | 2024-08-03 | 4.7 Medium |
Race condition within a thread in firmware for some Intel(R) Optane(TM) SSD and Intel(R) SSD DC Products may allow a privileged user to potentially enable denial of service via local access. | ||||
CVE-2021-32921 | 4 Debian, Fedoraproject, Lua and 1 more | 4 Debian Linux, Fedora, Lua and 1 more | 2024-08-03 | 5.9 Medium |
An issue was discovered in Prosody before 0.11.9. It does not use a constant-time algorithm for comparing certain secret strings when running under Lua 5.2 or later. This can potentially be used in a timing attack to reveal the contents of secret strings to an attacker. | ||||
CVE-2021-32810 | 3 Crossbeam Project, Fedoraproject, Redhat | 4 Crossbeam, Fedora, Enterprise Linux and 1 more | 2024-08-03 | 9.8 Critical |
crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never popped. If tasks are allocated on the heap, this can cause double free and a memory leak. If not, this still can cause a logical bug. Crates using `Stealer::steal`, `Stealer::steal_batch`, or `Stealer::steal_batch_and_pop` are affected by this issue. This has been fixed in crossbeam-deque 0.8.1 and 0.7.4. |