Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-367

CWE-367

Medium likelihood

Time-of-check Time-of-use (TOCTOU) Race Condition

Parent: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check.

649 vulnerabilities with CWE-367

CVE-2026-1035 LOW

Keycloak - Refresh Token Reuse Bypass via Non-Atomic Validation in TokenManager

CVE-2026-23950 HIGH

node-tar <= 7.5.3 - Arbitrary File Overwrite via Unicode Path Collision Race Condition

CVE-2026-21912 MEDIUM

Junos OS on MX10k Series - Authenticated Denial of Service via 'show system firmware' CLI Command

CVE-2026-22820 LOW

outray < 0.1.5 - Time-of-check Time-of-use Race Condition

CVE-2026-20831 HIGH

Windows Ancillary Function Driver - Privilege Escalation

CVE-2026-20816 HIGH

Windows Installer - Privilege Escalation

CVE-2026-20809 HIGH

Windows Kernel Memory - Privilege Escalation

CVE-2026-22701 MEDIUM

filelock < 3.20.3 - TOCTOU Race Condition in SoftFileLock _acquire Method

CVE-2025-41259 HIGH

SWUpdate Untrusted Script Execution via Signed Update TOCTOU

CVE-2025-64390 HIGH

Sony PS4 < 13.02 - Privilege Escalation

CVE-2025-59610 MEDIUM

Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver

CVE-2025-71216 HIGH

Trend Micro, Inc. TrendAI Apex One (Mac) - Time-of-check Time-of-use (TOCTOU) Race Condition

CVE-2025-71215 HIGH

Trend Micro, Inc. TrendAI Apex One (Mac) - Time-of-check Time-of-use (TOCTOU) Race Condition

CVE-2025-52532 LOW

AMD Radeon PRO V620 - Denial of Service via MxGPU-Virtualization Driver Race Condition

CVE-2025-69233 MEDIUM

Apache CloudStack: Domain/account resources limits not honored

CVE-2025-47407 HIGH

Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service

CVE-2025-22850 MEDIUM

Intel UEFI PdaSmm - Info Disclosure

CVE-2025-20028 HIGH

Intel WheaERST SMM - Privilege Escalation

CVE-2025-71225 MEDIUM

Linux Kernel - Privilege Escalation

CVE-2025-13818 MEDIUM

ESET Management Agent - Privilege Escalation

CVE-2025-67124 MEDIUM

miniserve < 0.32.0 - Arbitrary File Overwrite via Symlink Race in Upload Finalization

CVE-2025-71111 MEDIUM

Linux Kernel - Time-of-check Time-of-use Race Condition in w83791d FAN_FROM_REG Macro

CVE-2025-47344 MEDIUM

Qualcomm Firmware - Memory Corruption via Sensor Utility Operations

CVE-2025-47332 MEDIUM

Qualcomm FastConnect and QCM/QCS/SM/SG Firmware - Memory Corruption via Config Call Processing

CVE-2025-53594 MEDIUM

Qfinder Pro Mac <7.13.0 - Path Traversal

Previous Page 6 of 26 Next

Details

Vulnerabilities 649

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy