Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-367

CWE-367

Medium likelihood

Time-of-check Time-of-use (TOCTOU) Race Condition

Parent: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check.

649 vulnerabilities with CWE-367

CVE-2022-33907 MEDIUM

IdeBusDxe <5.2.05.27.25-<5.3 - Memory Corruption

CVE-2022-30773 MEDIUM

IhisiSmm <5.4.23, <5.5.23 - Memory Corruption

CVE-2022-21198 HIGH

Intel Celeron Processor BIOS Firmware - Privilege Escalation via Time-of-check Time-of-use Race Condition

CVE-2022-32608 MEDIUM

Android - Use-After-Free via Race Condition in JPEG Component

CVE-2022-33214 HIGH

Snapdragon Auto-Snapdragon Wearables - Memory Corruption

CVE-2022-22225 MEDIUM

Juniper Networks Junos OS/Junos OS Evolved - DoS

CVE-2022-22220 MEDIUM

Juniper Networks Junos OS/Junos OS Evolved - DoS

CVE-2022-41744 HIGH

Trend Micro Apex One - Privilege Escalation

CVE-2022-29800 MEDIUM

Windows Defender for Endpoint - Time-of-check Time-of-use Race Condition

CVE-2022-25696 HIGH

Qualcomm APQ8053 Firmware - Memory Corruption via Time-of-check Time-of-use Race Condition in Display

CVE-2022-22094 HIGH

Qualcomm AQT1000 and related firmware - Memory Corruption via Kernel Mapping Reference Race Condition

CVE-2022-22093 HIGH

Qualcomm AQT1000 Firmware - Memory Corruption or Denial of Service via Concurrent Hypervisor IRQ Operations

CVE-2022-26859 MEDIUM

Dell BIOS - Race Condition via SMI Input

CVE-2022-1974 MEDIUM

Linux Kernel - Use-After-Free via NFC Core kobject Race Condition

CVE-2022-20909 MEDIUM

Cisco Nexus Dashboard 2.0-2.2(1e) - Authenticated Privilege Escalation via CLI Command Execution

CVE-2022-20908 MEDIUM

Cisco Nexus Dashboard 2.0-2.2(1e) - Authenticated Privilege Escalation via CLI Command Injection

CVE-2022-20907 MEDIUM

Cisco Nexus Dashboard 2.0-2.2(1e) - Authenticated Privilege Escalation via CLI Command Execution

CVE-2022-20906 MEDIUM

Cisco Nexus Dashboard 2.0-2.2(1e) - Authenticated Privilege Escalation via CLI Command Execution

CVE-2022-34899 HIGH

Parallels Access 6.5.4 - Privilege Escalation via Symbolic Link Race Condition

CVE-2022-33691 MEDIUM

score driver <SMR Jul-2022 Release 1 - Info Disclosure

CVE-2022-27904 HIGH

Automox Agent for macOS < 39 - Time-of-check Time-of-use Race Condition during Install

CVE-2022-31466 HIGH

Quick Heal Total Security <12.1.1.27 - Privilege Escalation

CVE-2022-1537 HIGH

gruntjs/grunt < 1.5.3 - Arbitrary File Write via TOCTOU Race Condition in file.copy

CVE-2022-20110 HIGH

Android - Use-After-Free via Race Condition in ion

CVE-2022-28743 CRITICAL

Foscam R2C <1.13.1.6-2.91.2.66 - Authenticated RCE

Previous Page 20 of 26 Next

Details

Vulnerabilities 649

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy