Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-367

CWE-367

Medium likelihood

Time-of-check Time-of-use (TOCTOU) Race Condition

Parent: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check.

649 vulnerabilities with CWE-367

CVE-2025-21431 MEDIUM

Qualcomm SA8770P Firmware - Information Disclosure via Guest VM Connection

CVE-2025-21998 MEDIUM

Linux Kernel 6.11-6.12.20 - Time-of-check Time-of-use Race Condition in EFI Variable Access

CVE-2025-21958 MEDIUM

Linux Kernel 6.12-6.12.19, 6.13-6.13.7 - Open vSwitch Conntrack Label TOCTOU Race Condition

CVE-2025-22224 CRITICAL KEV

VMware ESXi, Workstation - Code Injection

CVE-2025-0759 LOW

IBM EntireX 11.1 - Time-of-check Time-of-use Race Condition

CVE-2025-21746 MEDIUM

Linux Kernel 6.5-6.6.79, 6.7-6.12.16, 6.13-6.13.2 - TOCTOU Race Condition in Synaptics Port Handling

CVE-2025-26620 MEDIUM

Duende.AccessTokenManagement < 3.2.0 - Race Condition in Client Credentials Token Request

CVE-2025-23359 HIGH

NVIDIA Container Toolkit < 1.17.4 and NVIDIA GPU Operator < 24.9.2 - Time-of-Check Time-of-Use Race Condition

CVE-2025-24432 LOW

Adobe Commerce < 2.4.4 - Time-of-check Time-of-use Race Condition

CVE-2025-24430 LOW

Adobe Commerce < 2.4.4 - Time-of-check Time-of-use Race Condition

CVE-2025-24036 HIGH

Microsoft AutoUpdate < 4.77.24121924 - Elevation of Privilege via TOCTOU Race Condition

CVE-2025-22394 MEDIUM

Dell Display Manager < 2.3.2.20 - Time-of-check Time-of-use Race Condition

CVE-2024-36311 MEDIUM

AMD Ryzen 7045 Mobile Processors - SMM Communications Buffer Race Condition

CVE-2024-9183 HIGH

GitLab 18.4-18.4.5, 18.5-18.5.3, 18.6-18.6.1 - Authenticated Credential Theft via TOCTOU Race Condition

CVE-2024-9512 MEDIUM

GitLab < 17.10.8, 17.11 < 17.11.4, 18.0 < 18.0.2 - Unauthenticated Repository Cloning via Race Condition

CVE-2024-53018 MEDIUM

Qualcomm FastConnect 6900 Firmware - Memory Corruption in OIS Packet Parser

CVE-2024-53016 MEDIUM

Qualcomm FastConnect and Snapdragon Firmware - Memory Corruption in Camera Driver I2C Settings

CVE-2024-42446 HIGH

AMI APTIO V 5.0-5.039 - Time-of-check Time-of-use Race Condition

CVE-2024-13961 HIGH

Avast Cleanup Premium <24.2.16593.17810 - Privilege Escalation

CVE-2024-13960 HIGH

AVG TuneUp <23.4-15592 - Privilege Escalation

CVE-2024-13944 HIGH

Norton Utilities Ultimate <24.2.16862.6344 - Privilege Escalation

CVE-2024-45565 HIGH

Qualcomm SDM429W Firmware - Memory Corruption via TOCTOU Race Condition

CVE-2024-6029 MEDIUM

Tesla Model S Firmware < 2024.2.3 - Unauthenticated Firewall Bypass via Race Condition in Iris Modem

CVE-2024-43067 HIGH

Microcontroller <version> - Memory Corruption

CVE-2024-54084 HIGH

AMI APTIO V 5.0-5.038 - Time-of-check Time-of-use Race Condition

Previous Page 10 of 26 Next

Details

Vulnerabilities 649

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy