CWE•Class•Draft•20 recent CVEs

CWE-667Improper Locking

Description

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

[object Object]

Common consequences

Availability→DoS: Resource Consumption (CPU)
Inconsistent locking discipline can lead to deadlock.

Potential mitigations

Implementation
Use industry standard APIs to implement locking mechanism.

Related CWEs

CWE-662Improper Synchronization CWE-662Improper Synchronization CWE-662Improper Synchronization CWE-662Improper Synchronization

Recent CVEs classified under this CWE