Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-367

CWE-367

Medium likelihood

Time-of-check Time-of-use (TOCTOU) Race Condition

Parent: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check.

651 vulnerabilities with CWE-367

CVE-2020-8873 MEDIUM

Parallels Desktop 15.1.2-47123 - Privilege Escalation

CVE-2020-8793 MEDIUM

OpenSMTPD < 6.6.4 - Local Arbitrary File Read via Race Condition in makemap.c and smtpd.c

CVE-2020-8890 MEDIUM

MISP < 2.4.121 - Time-of-check Time-of-use Race Condition in Brute-Force Protection

CVE-2020-0003 MEDIUM

Android <8.0 - Privilege Escalation

CVE-2019-14119 HIGH

Snapdragon Auto Snapdragon Compute Snapdragon Connectivity Snapdrag...

CVE-2019-20610 HIGH

Samsung Android N(7.X) and O(8.X) - Arbitrary TEE Code Execution via Double-Fetch in Trustlet

CVE-2019-15608 MEDIUM

yarn < 1.19.0 - TOCTOU Race Condition in Package Integrity Validation

CVE-2019-11482 MEDIUM

Ubuntu Linux - Time-of-check Time-of-use Race Condition in Apport Core File Handling

CVE-2019-15126 LOW

Apple Ipados < 13.2 - TOCTOU Race Condition

CVE-2019-17102 HIGH

Bitdefender BOX 2 <2.1.47.36 - Command Injection

CVE-2019-20000 MEDIUM

BullGuard Premium Protection 20.0.371.8 - Privileged File Deletion via Symbolic Link Attack

CVE-2019-19793 HIGH

Cyxtera AppGate SDP 4.1.0-4.3.1 - Privilege Escalation via TOCTOU Race Condition

CVE-2019-10494 HIGH

Qualcomm Snapdragon Firmware - Use-After-Free via Camera Resource Race Condition

CVE-2019-10486 HIGH

Qualcomm Snapdragon Firmware - Time-of-check Time-of-use Race Condition in memcpy

CVE-2019-1380 HIGH

Microsoft splwow64 - Privilege Escalation

CVE-2019-18644 MEDIUM

Total Defense Anti-virus <11.5.2.28 - Use After Free

CVE-2019-11774 HIGH

Eclipse OMR < 0.1 - Time-of-check Time-of-use Race Condition

CVE-2019-7307 HIGH

Apport <2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu...

CVE-2019-15316 HIGH

Valve Steam Client for Windows < 2019-08-20 - Privilege Escalation via TOCTOU Race Condition

CVE-2019-11775 HIGH

Eclipse OpenJ9 <0.15 - Info Disclosure

CVE-2019-1065 HIGH

Windows 10 and Windows Server 2016/2019 - Elevation of Privilege via Kernel Memory Handling

CVE-2019-9486 HIGH

STRATO HiDrive Desktop Client <5.0.1.0 - Privilege Escalation

CVE-2019-0836 HIGH

Windows - Elevation of Privilege via LUAFV Driver Race Condition

CVE-2019-5421 CRITICAL

Plataformatec Devise <4.5.0 - Info Disclosure

CVE-2019-5519 MEDIUM

VMware Fusion 10.0.0-10.1.5 - Time-of-check Time-of-use Race Condition in Virtual USB UHCI

Previous Page 25 of 27 Next

Details

Vulnerabilities 651

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy