Lucene search
K

6 matches found

Cvelist
Cvelist
added 2026/06/03 11:1 a.m.39 views

CVE-2025-41259 SWUpdate Untrusted Script Execution via Signed Update TOCTOU

SWUpdate before 2026.05 is affected by a time-of-check time-of-use TOCTOU race condition that allows local unprivileged attackers to escalate privileges to root or install untrusted contents using a signed update...

7.3CVSS0.00101EPSS
Exploits0References3
NVD
NVD
added 2026/05/21 2:16 p.m.22 views

CVE-2026-45208

A time-of-check time-of-use vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability...

7.8CVSS0.003EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/05/06 9:31 p.m.8 views

Duplicate Advisory: OpenClaw: OpenShell FS bridge reads pin and verify the opened file before returning bytes

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-5h3g-6xhh-rg6p. This link is maintained to preserve external references. Original Description OpenClaw before 2026.4.22 contains a time-of-check/time-of-use race condition in the OpenShell filesystem bridge that...

8.3CVSS5.7AI score0.00208EPSS
Exploits0References5Affected Software1
GithubExploit
GithubExploit
added 2026/05/06 6:12 a.m.91 views

Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Packagekit_Project Packagekit

CVE-2026-41651 — Pack2TheRoot Analysis PackageKit Local P...

8.8CVSS5.8AI score0.0046EPSS
Exploits10
Snyk
Snyk
added 2025/02/11 6:31 p.m.2 views

Time-of-check Time-of-use (TOCTOU) Race Condition

Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition enabling the bypass of a security feature. Remediation Upgrade magento/community-edition to version 2.4.4-p12, 2.4.5-p11,...

6.3CVSS6.9AI score0.00369EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/06/30 12:0 a.m.3 views

HP PC 安全漏洞

HP PC is a computer product from Hewlett-Packard HP in the United States. A security vulnerability exists in HP PCs that stems from the discovery of a potential time-of-check-to-time-of-use TOCTOU vulnerability in computers utilizing AMI UEFI firmware, which could allow arbitrary code execution...

7CVSS7.5AI score0.00128EPSS
Exploits0References2
Rows per page
Query Builder