53 matches found
GHSA-M833-JV95-MFJH Memory safety violation in crayon
An issue was discovered in the crayon crate through 2020-08-31 for Rust. A TOCTOU issue has a resultant memory safety violation via HandleLike...
Memory safety violation in crayon
An issue was discovered in the crayon crate through 2020-08-31 for Rust. A TOCTOU issue has a resultant memory safety violation via HandleLike...
CVE-2020-35889
An issue was discovered in the crayon crate through 2020-08-31 for Rust. A TOCTOU issue has a resultant memory safety violation via HandleLike...
CVE-2017-18869
CVE-2017-18869 : A TOCTOU vulnerability in the chownr package (Node.js 10.10) could allow a local attacker to trick the code into descending into unintended directories via symlink attacks. Root cause: TOCTOU in chownr.js. Impact: local privilege-limited access through directory traversal. Remedi...
CVE-2020-3957
Summary of CVE-2020-3957 : VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior), and VMware Horizon Client for Mac (5.x and prior) contain a local privilege-escalation vulnerability caused by a Time-of-check Time-of-use (TOCTOU) issue in the service opener. Successfu...
CVE-2020-3957
VMware Fusion 11.x before 11.5.5, VMware Remote Console for Mac 11.x and prior and VMware Horizon Client for Mac 5.x and prior contain a local privilege escalation vulnerability due to a Time-of-check Time-of-use TOCTOU issue in the service opener. Successful exploitation of this issue may allow...
CVE-2019-20000
The malware scan function in BullGuard Premium Protection 20.0.371.8 has a TOCTOU issue that enables a symbolic link attack, allowing privileged files to be deleted...
Code injection
The malware scan function in BullGuard Premium Protection 20.0.371.8 has a TOCTOU issue that enables a symbolic link attack, allowing privileged files to be deleted...
CVE-2019-20000
The malware scan function in BullGuard Premium Protection 20.0.371.8 has a TOCTOU issue that enables a symbolic link attack, allowing privileged files to be deleted...
CVE-2019-20000
CVE-2019-20000 affects BullGuard Premium Protection 20.0.371.8. The vulnerability is a TOCTOU issue in the malware scan function that allows a symbolic-link attack, enabling privileged files to be deleted. Connected sources confirm the issue across Red Hat and CVE records, with no explicit exploi...
Kaseya Virtual System Administrator Agent <= 9.4.0.36 Local Privilege Escalation Vulnerability
Kaseya Virtual System Administrator agent is prone to a local privilege escalation vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...
Design/Logic Flaw
NVIDIA TrustZone Software contains a TOCTOU issue in the DRM application which may lead to the denial of service or possible escalation of privileges. This issue is rated as moderate...
Low unzip security and bug fix update
5.51-9.EL4.5 - Resolves: 230558 problem in patch4 unzipped file permissions 5.51-8.EL4.5 - fix problem with 4GB files which are not compressed 5.51-7.EL4.5 - fix 164927 - TOCTOU issue in unzip - fix 178960 - unzip long filename buffer overflow - fix 199104 - add large file support return Lon's 4G...