CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)

BaseStable

The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

View on MITRE
0Related CVEs
0.00Severity Score
Back to CWE Lookup

Technical Details

Structure
Simple

Applicable To

Languages
Platforms

🏆 CWE Top 25 Historical Ranking

2023:#21
Score: 3.53
412 CVEs
Trend:✗ Dropped from Top 25

Frequently Asked Questions

What is CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)?+

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition) is a Common Weakness Enumeration (CWE) entry maintained by MITRE. The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

Is CWE-362 in the CWE Top 25 Most Dangerous Software Weaknesses?+

Yes. CWE-362 ranked #21 in the CWE Top 25 for 2023, associated with 412 CVEs that year. The CWE Top 25 highlights the most common and impactful software weaknesses based on real-world vulnerability data.

What is the difference between a CWE and a CVE?+

A CWE (Common Weakness Enumeration) like CWE-362 describes a category of software weakness — the underlying flaw type. A CVE (Common Vulnerabilities and Exposures) identifies a specific, real-world vulnerability in a particular product. In short, a CWE is the kind of mistake, and a CVE is an instance of that mistake being found in software.

Learn More