Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-367

CWE-367

Medium likelihood

Time-of-check Time-of-use (TOCTOU) Race Condition

Parent: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check.

649 vulnerabilities with CWE-367

CVE-2026-7837 LOW

Netatalk 3.0.0-4.4.2 and >=4.5.0 - Time-of-check Time-of-use Race Condition in ad_flush

CVE-2026-29518 HIGH

Rsync < 3.4.3 TOCTOU Race Condition Allows Symlink-Based Arbitrary File Write

CVE-2026-43619 MEDIUM

Rsync < 3.4.3 Symlink Race Condition via Path-Based Syscalls

CVE-2026-41702 HIGH

VMware Fusion >=2025H2 <2026H1 - Privilege Escalation via SETUID Binary TOCTOU Race Condition

CVE-2026-42592 MEDIUM

Gotenberg: DNS rebinding bypasses SSRF validation on Chromium URL conversion routes

CVE-2026-41051 MEDIUM

csync2 uses insecure temporary directories when compiled with C99 or later

CVE-2026-35418 HIGH

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2026-42344 MEDIUM

FastGPT: DNS rebinding TOCTOU bypass in isInternalAddress allows SSRF on all protected endpoints

CVE-2026-44694 CRITICAL

n8n-MCP: Authenticated SSRF in n8n-mcp webhook and API client paths

CVE-2026-34354 HIGH

Akamai Guardicore Platform Agent - Time-of-check Time-of-use (TOCTOU) Race Condition

CVE-2026-43433 HIGH

rust_binder: avoid reading the written value in offsets array

CVE-2026-43420 MEDIUM

ceph: fix i_nlink underrun during async unlink

CVE-2026-41002 HIGH

Spring Cloud Config Race Condition in Git Repository Clone Directory

CVE-2026-44113 HIGH

OpenClaw < 2026.4.22 - Time-of-Check/Time-of-Use Race Condition in OpenShell FS Bridge

CVE-2026-44112 CRITICAL

OpenClaw < 2026.4.22 - Symlink Swap Race Condition in OpenShell FS Bridge Writes

CVE-2026-43582 MEDIUM

OpenClaw < 2026.4.10 - DNS Rebinding SSRF via Hostname Validation Bypass

CVE-2026-34596 HIGH

Sandboxie-Plus local privilege escalation via TOCTOU race condition in UpdUtil addon installation

CVE-2026-7846 LOW

chatchat-space Langchain-Chatchat OpenAI-Compatible File Upload API openai_routes.py files toctou

CVE-2026-43529 LOW

OpenClaw < 2026.4.10 - Time-of-Check-Time-of-Use (TOCTOU) Race Condition in exec Script Preflight Validator

CVE-2026-6180 HIGH

PaperCut MF: Card truncation on HP readers

CVE-2026-7791 HIGH

Amazon Workspaces < 2.6.2034.0 - Authenticated Local Privilege Escalation via Log Rotation Race Condition

CVE-2026-7724 MEDIUM

PrefectHQ prefect Webhook/Notification validate_restricted_url toctou

CVE-2026-37531 CRITICAL

AGL app-framework-main <=17.1.12 - Path Traversal

CVE-2026-43053 MEDIUM

xfs: close crash window in attr dabtree inactivation

CVE-2026-26206 MEDIUM

Wazuh: API brute-force protection bypass via race condition in login attempt tracking

Previous Page 2 of 26 Next

Details

Vulnerabilities 649

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy