CWE-764— Multiple Locks of a Critical Resource
The product locks a critical resource more times than intended, leading to an unexpected state in the system.— MITRE CWE catalog
2 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-764page 1 of 1
- CVE-2024-0436MEDIUMCVSS 5.9EG 7.12024-02-26
Theoretically, it would be possible for an attacker to brute-force the password for an instance in single-user password protection mode via a timing attack given the linear nature of the `!==` used for comparison. The risk is minified by …
- CVE-2026-32283HIGHCVSS 7.5EG 7.52026-04-08
If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS…
Map vulnerabilities like CWE-764 to your infrastructure
EchelonGraph correlates every CVE — across CWE-764 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →