Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-367

CWE-367

Medium likelihood

Time-of-check Time-of-use (TOCTOU) Race Condition

Parent: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check.

649 vulnerabilities with CWE-367

CVE-2024-53694 HIGH

QVPN Device Client for Mac <2.2.5, Qsync for Mac <5.1.3, Qfinder Pr...

CVE-2024-53032 HIGH

Qualcomm Firmware - Memory Corruption via Guest VM Keyboard Interaction

CVE-2024-53028 HIGH

Qualcomm QAM8255P and related firmware - Memory Corruption via Frontend Message Processing

CVE-2024-41917 HIGH

Intel(R) Battery Life Diagnostic Tool <2.4.1 - Privilege Escalation

CVE-2024-48394 HIGH

NDD Print <5.24.3 - Privilege Escalation

CVE-2024-45560 HIGH

Qualcomm AQT1000 and FastConnect Firmware - Memory Corruption via Unvalidated Userspace Buffer

CVE-2024-38418 HIGH

Kernel <version> - Memory Corruption

CVE-2024-37181 LOW

Intel(R) Neural Compressor <v3.0 - Info Disclosure

CVE-2024-42444 HIGH

AMI APTIO V 5.0-5.038 - TOCTOU Race Condition

CVE-2024-41787 CRITICAL

IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 - Remote Code Execution via Race Condition

CVE-2024-56337 CRITICAL

Apache Tomcat 9.0.0-9.0.97, 10.1.0-M1-10.1.33, 11.0.0-M1-11.0.1 - Time-of-check Time-of-use Race Condition

CVE-2024-50379 CRITICAL

Apache Tomcat 9.0.0-9.0.97, 10.1.0-M1-10.1.33, 11.0.0-M1-11.0.1 - RCE via TOCTOU Race Condition in JSP Compilation

CVE-2024-10972 HIGH

Velocidex WinPmem <4.1 - Improper Input Validation

CVE-2024-53289 HIGH

Dell ThinOS 2408 - Time-of-check Time-of-use Race Condition

CVE-2024-27134 HIGH

MLflow < 2.16.0 - Local Privilege Escalation via Spark UDF ToCToU Race Condition

CVE-2024-41779 CRITICAL

IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2-7.0.3 - Remote Code Execution via Race Condition

CVE-2024-22185 HIGH

Intel(R) processor <ACTM - Privilege Escalation

CVE-2024-49046 HIGH

Windows 10 1507-22H2 and Windows 11 22H2 - Elevation of Privilege via Win32 Kernel Subsystem Race Condition

CVE-2024-43452 HIGH

Windows 10/11 Elevation of Privilege via Registry TOCTOU Race Condition

CVE-2024-51563 MEDIUM

virtio-vq-recordon - Use After Free

CVE-2024-48322 HIGH

Run.codes <= 1.5.2 - Time-of-check Time-of-use Race Condition in UsersController.php

CVE-2024-50234 HIGH

Linux Kernel < 4.19.323, 4.20.0-6.11.7 - WiFi iwlegacy Resume TOCTOU Race Condition

CVE-2024-50220 MEDIUM

Linux Kernel 6.8-6.11.7 - Time-of-check Time-of-use Race Condition in Fork Operation

CVE-2024-50592 HIGH

Elefant Update Service - Privilege Escalation

CVE-2024-38407 HIGH

JPEG Encoder driver - Memory Corruption

Previous Page 11 of 26 Next

Details

Vulnerabilities 649

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy