Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-367

CWE-367

Medium likelihood

Time-of-check Time-of-use (TOCTOU) Race Condition

Parent: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check.

649 vulnerabilities with CWE-367

CVE-2024-38406 HIGH

JPEG Encoder driver - Memory Corruption

CVE-2024-49768 CRITICAL

Waitress 2.0.0-3.0.0 - Time-of-check Time-of-use Race Condition via HTTP Pipelining

CVE-2024-49998 MEDIUM

Linux Kernel - Time-of-check Time-of-use Race Condition in DSA Shutdown Sequence

CVE-2024-47494 MEDIUM

Junos OS DoS via AgentD Process Race Condition

CVE-2024-45120 LOW

Adobe Commerce 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier - Time-of-check Time-of-use (TOCTOU) Race Condition

CVE-2024-47813 LOW

Wasmtime 19.0.0-21.0.1, 22.0.0, 23.0.0-23.0.2, 24.0.0, 25.0.0-25.0.1 - TOCTOU Race Condition

CVE-2024-43511 HIGH

Windows 10/11, Server 2016-2019 Elevation of Privilege via TOCTOU Race Condition

CVE-2024-5803 HIGH

AVG/Avast Antivirus <24.1 - Privilege Escalation

CVE-2024-0133 MEDIUM

NVIDIA Container Toolkit < 1.16.2 - Data Tampering via Specially Crafted Container Image

CVE-2024-0132 CRITICAL

NVIDIA Container Toolkit < 1.16.2 - Time-of-check Time-of-use Race Condition

CVE-2024-6787 MEDIUM

Moxa MXview One < 1.4.1 - Arbitrary File Write via TOCTOU Race Condition

CVE-2024-27114 CRITICAL

SO Planning < 1.52.02 Public View Upload - Remote Code Execution

CVE-2024-43882 HIGH

Linux Kernel < 4.19.320, 4.20.0-6.10.6 - Race Condition in Exec Permission Handling

CVE-2024-39425 HIGH

Adobe Acrobat and Acrobat Reader < 20.005.30655 and < 24.002.21005 - Time-of-check Time-of-use (TOCTOU) Race Condition

CVE-2024-39420 HIGH

Adobe Acrobat and Reader < 20.005.30655 and < 24.002.21005 - Time-of-check Time-of-use Race Condition

CVE-2024-38186 HIGH

Windows Kernel-Mode Driver - Privilege Escalation

CVE-2024-38153 HIGH

Windows Kernel - Privilege Escalation

CVE-2024-7348 HIGH

PostgreSQL 12.0-12.19 - Time-of-check Time-of-use Race Condition in pg_dump

CVE-2024-7531 MEDIUM

Firefox < 129 and Firefox ESR < 115.14 - Information Exposure via QUIC Header Protection

CVE-2024-42107 MEDIUM

Linux Kernel 5.14-6.9.8 - Time-of-check Time-of-use Race Condition in PTP Clock Event Handling

CVE-2024-30471 LOW

Apache StreamPipes <= 0.93.0 - Time-of-check Time-of-use Race Condition in User Self-Registration

CVE-2024-39826 MEDIUM

Zoom Meeting SDK < 6.0.0 - Authenticated Information Disclosure via Team Chat Race Condition

CVE-2024-39821 MEDIUM

Zoom Rooms < 6.0.6 and Workplace Desktop < 6.0.10 - Authenticated Denial of Service via Installer Race Condition

CVE-2024-27238 HIGH

Zoom Apps & SDKs <6.0.0 - Privilege Escalation

CVE-2024-27361 MEDIUM

Samsung Exynos 980 990 1080 2100 2200 1280 1380 2400 Firmware - Denial of Service via TOCTOU Race Condition

Previous Page 12 of 26 Next

Details

Vulnerabilities 649

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy