CWE · MITRE source
CWE-413Improper Resource Locking
The product does not lock or does not correctly lock a resource when the product must have exclusive access to the resource.
When a resource is not properly locked, an attacker could modify the resource while it is being operated on by the product. This might violate the product's assumption that the resource will not change, potentially leading to unexpected behaviors.
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2025-3450 | 2.0 | 10.0 | 0.0006 | 2025-10-07 |
CVE-2019-17102 | 1.7 | 8.3 | 0.0034 | 2020-01-27 |
CVE-2022-20678 | 1.7 | 8.6 | 0.0029 | 2022-04-15 |
CVE-2023-28649 | 1.7 | 8.6 | 0.0007 | 2023-05-22 |
CVE-2019-8998 | 1.6 | 7.8 | 0.0005 | 2019-07-12 |
CVE-2022-49737 | 1.5 | 7.7 | 0.0009 | 2025-03-16 |
CVE-2025-0003 | 1.5 | 7.3 | 0.0003 | 2025-11-24 |
CVE-2026-32748 | 1.5 | 7.5 | 0.0038 | 2026-03-26 |
CVE-2023-33951 | 1.3 | 6.7 | 0.0001 | 2023-07-24 |
CVE-2025-69198 | 1.3 | 6.5 | 0.0005 | 2026-01-19 |
CVE-2023-32253 | 1.2 | 5.9 | 0.0008 | 2025-08-02 |
CVE-2023-2430 | 1.1 | 5.5 | 0.0001 | 2023-07-23 |
CVE-2023-2269 | 0.9 | 4.4 | 0.0002 | 2023-04-25 |