CVEs classified under CWE-413, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2025-3450 — CVSS 10.0 (critical): An Improper Resource Locking vulnerability in the SDM component of B&R Automation Runtime versions before 6.3 and before Q4.93 may allow an…
CVE-2023-28649 — CVSS 8.6 (high): The Hub in the Snap One OvrC cloud platform is a device used to centralize and manage nested devices connected to it. A vulnerability…
CVE-2019-8998 — CVSS 7.8 (high): An information disclosure vulnerability leading to a potential local escalation of privilege in the procfs service (the /proc filesystem)…
CVE-2022-49737 — CVSS 7.7 (high): In X.Org X server 20.11 through 21.1.16, when a client application uses easystroke for mouse gestures, the main thread modifies various…
CVE-2026-32748 — CVSS 7.5 (high): Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expected lifetime and heap…
CVE-2025-0003 — CVSS 7.3 (high): Inadequate lock protection within Xilinx Run time may allow a local attacker to trigger a Use-After-Free condition potentially resulting in…
CVE-2023-33951 — CVSS 6.7 (medium): A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The…
CVE-2026-44608 — CVSS 5.9 (medium): NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a locking inconsistency vulnerability that when certain conditions are met…
CVE-2023-32253 — CVSS 5.9 (medium): A flaw was found in the Linux kernel's ksmbd component. A deadlock is triggered by sending multiple concurrent session setup requests…