CWE-821β€”Incorrect Synchronization

PUBLISHEDweakness record
released 2010-09-27 Β· last modified 2025-12-11

Metadata

CWE ID:
CWE-821
Abstraction:
Base
Structure:
Simple
Status:
Incomplete
Release Date:
2010-09-27
Latest Modification Date:
2025-12-11

Weakness Name

Incorrect Synchronization

Description

The product utilizes a shared resource in a concurrent manner, but it does not correctly synchronize access to the resource.

If access to a shared resource is not correctly synchronized, then the resource may not be in a state that is expected by the product. This might lead to unexpected or insecure behaviors, especially if an attacker can influence the shared resource.

Common Consequences

Scope:
Integrity, Confidentiality, Other
Impact:
Modify Application Data, Read Application Data, Alter Execution Logic

Related Weaknesses