Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-367

CWE-367

Medium likelihood

Time-of-check Time-of-use (TOCTOU) Race Condition

Parent: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check.

649 vulnerabilities with CWE-367

CVE-2021-21539 MEDIUM

Dell EMC iDRAC9 < 4.40.00.00 - Authenticated Privilege Escalation via TOCTOU Race Condition

CVE-2021-31427 MEDIUM

Parallels Desktop 15.1.5-47309 - Information Disclosure via Open Tools Gate Race Condition

CVE-2021-31422 HIGH

Parallels Desktop 16.1.1-49141 - Privilege Escalation via e1000e Virtual Device Race Condition

CVE-2021-23977 MEDIUM

Firefox for Android < 86.0 - Time-of-check Time-of-use Race Condition

CVE-2021-26910 HIGH

Firejail < 0.9.64.4 - Time-of-check Time-of-use Race Condition via OverlayFS Mount

CVE-2021-21615 MEDIUM

Jenkins < 2.263.3 and < 2.276 - Arbitrary File Read via Workspace File Browser TOCTOU Race Condition

CVE-2020-8562 LOW

kubernetes < 1.18.18 and >=1.21.0 - Time-of-check Time-of-use Race Condition in DNS Resolution

CVE-2020-11298 HIGH

Qualcomm AQT1000 Firmware - Time-of-check Time-of-use Race Condition

CVE-2020-11233 HIGH

Qualcomm APQ8009 Firmware - Time-of-check Time-of-use Race Condition in Partition Entry Processing

CVE-2020-11230 MEDIUM

Qualcomm AQT1000 and other PMIC Firmware - Arbitrary Memory Corruption via qseecom Driver TOCTOU Race Condition

CVE-2020-11220 MEDIUM

Qualcomm AQT1000 Firmware - Time-of-check Time-of-use Race Condition in Storage SCM Command Processing

CVE-2020-14418 HIGH

Cisco Advanced Malware Protection < 7.2.13 - TOCTOU Race Condition

CVE-2020-35889 HIGH

crayon < 0.7.0 - Time-of-check Time-of-use Race Condition via HandleLike

CVE-2020-25860 MEDIUM

rauc < 1.5 - Time-of-check Time-of-use Race Condition in install.c

CVE-2020-27252 HIGH

Medtronic MyCareLink Smart 25000 - RCE

CVE-2020-12926 MEDIUM

TPM Reference Software - Info Disclosure

CVE-2020-8354 MEDIUM

Lenovo Notebook Firmware - Arbitrary Code Execution via VariableServiceSmm SMI Callback Race Condition

CVE-2020-24428 HIGH

Acrobat Reader DC <2020.012.20048, 2020.001.30005, 2017.011.30175 -...

CVE-2020-27014 MEDIUM

Trend Micro Antivirus for Mac 2020 - Memory Corruption

CVE-2020-9939 MEDIUM

macOS < 10.15.6 - Unauthenticated Unsigned Kernel Extension Loading

CVE-2020-9921 HIGH

macOS < 10.15.6 - Memory Corruption Leading to Privilege Escalation

CVE-2020-3982 HIGH

VMware ESXi 7.0 < 7.0.1-0.0.16850804, 6.7 < 6.7-202008101, 6.5 < 6.5-202007101 - Out-of-Bounds Write via ACPI Device

CVE-2020-3981 MEDIUM

Vmware Cloud Foundation < 3.10.1 - Out-of-Bounds Read

CVE-2020-8332 MEDIUM

Lenovo BladeCenter HS23 - Arbitrary Code Execution via SMI Callback Race Condition in BIOS USB Driver

CVE-2020-14375 HIGH

DPDK 18.02.1-18.11.10 - Time-of-check Time-of-use Race Condition

Previous Page 23 of 26 Next

Details

Vulnerabilities 649

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy