CWE-364 is a common weakness enumeration in software security. This database tracks 7 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-364?

There are 7 CVE vulnerabilities classified as CWE-364 with an average CVSS score of 6.0857142857143.

What is the severity distribution for CWE-364?

CWE-364 contains 0 critical, 2 high, 5 medium, and 0 low severity vulnerabilities.

CWE-364

Total CVEs

Vulnerabilities

Avg CVSS v3

6.1

Medium

Avg CVSS v2

4.8

Medium

Latest CVE

2025

Most Recent

Severity Distribution

Critical 0

High 2

28.6%

Medium 5

71.4%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (7)

Page 1 of 1

CVE-2024-6387

HIGH

CVSS:8.1(High)

A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote at...

CWE-3642024

CVE-2024-6409

HIGH

CVSS:7.0(High)

A race condition vulnerability was discovered in how signals are handled by OpenSSH's server (sshd). If a remote attacker does not authenticate within a set time period, then sshd's SIGALRM handler is...

CWE-3642024

CVE-2023-5676

MEDIUM

CVSS:5.9(Medium)

In Eclipse OpenJ9 before version 0.41.0, the JVM can be forced into an infinite busy hang on a spinlock or a segmentation fault if a shutdown signal (SIGTERM, SIGINT or SIGHUP) is received before the ...

CWE-3642023

CVE-2023-1285

MEDIUM

CVSS:5.9(Medium)

Signal Handler Race Condition vulnerability in Mitsubishi Electric India GC-ENET-COM whose first 2 digits of 11-digit serial number of unit are "16" allows a remote unauthenticated attacker to cause a...

CWE-3642023

CVE-2020-14317

MEDIUM

CVSS:5.5(Medium)

It was found that the issue for security flaw CVE-2019-3805 appeared again in a further version of JBoss Enterprise Application Platform - Continuous Delivery (EAP-CD) introducing regression. An attac...

CWE-3642020

CVE-2019-3805

MEDIUM

CVSS:5.5(Medium)

A flaw was discovered in wildfly versions up to 16.0.0.Final that would allow local users who are able to execute init.d script to terminate arbitrary processes on the system. An attacker could exploi...

CWE-3642019

CVE-2025-4598

MEDIUM

CVSS:4.7(Medium)

A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged process coredump,...

CWE-3642025