Search

Blog Stats Labs CLI MCP API Limits About Privacy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Blog Statistics Labs CLI Tool MCP Server API Documentation Rate Limits About Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-367

CWE-367

Medium likelihood

Time-of-check Time-of-use (TOCTOU) Race Condition

Parent: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check.

530 vulnerabilities with CWE-367

CVE-2026-26017 HIGH

CoreDNS <1.14.2 - Auth Bypass

CVE-2026-27750 HIGH

Avira Internet Security - Privilege Escalation

CVE-2026-20445 MEDIUM

CVE-2026-20438 MEDIUM

MAE - Privilege Escalation

CVE-2026-21725 LOW

Grafana - Privilege Escalation

CVE-2026-27128 MEDIUM

Craft CMS 4.5.0-RC1-4.16.18/5.0.0-RC1-5.8.22 - Auth Bypass

CVE-2026-27127 MEDIUM

Craft CMS 4.5.0-RC1-4.16.18/5.0.0-RC1-5.8.22 - SSRF

CVE-2026-27189 MEDIUM

OpenSift <=1.1.2-alpha - Memory Corruption

CVE-2026-25738 MEDIUM

Indico <3.3.10 - SSRF

CVE-2026-20796 LOW

Mattermost <10.11.9 - Info Disclosure

Intego Log Reporter - Privilege Escalation

CVE-2026-20677 CRITICAL

macOS Tahoe <26.3 - Info Disclosure

CVE-2023-31324 HIGH

AMD Secure Processor - TOCTOU

CVE-2023-20548 HIGH

AMD Secure Processor - Memory Corruption

SMM - Memory Corruption

CVE-2026-25728 HIGH

ClipBucket <5.5.3 - Code Injection

CVE-2026-21523 HIGH

Microsoft Visual Studio Code < 1.109.2 - TOCTOU Race Condition

CVE-2026-21240 HIGH

Windows HTTP.sys - Privilege Escalation

CVE-2026-25641 CRITICAL

Nyariv Sandboxjs < 0.8.29 - TOCTOU Race Condition

CVE-2025-13818 MEDIUM

ESET Management Agent - Privilege Escalation

CVE-2026-25052 CRITICAL

N8n < 1.123.18 - TOCTOU Race Condition

CVE-2026-24071 HIGH

Native Access - Info Disclosure

CVE-2025-67124 MEDIUM

Svenstaro Miniserve < 0.32.0 - Symlink Following

CVE-2026-23988 HIGH

Rufus <4.11 - Code Injection

CVE-2026-22281 LOW

Dell Powerscale Onefs < 9.5.1.6 - TOCTOU Race Condition

Page 1 of 22 Next

Details

Vulnerabilities 530

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy