CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/04/22 6:31 p.m.•4 views

GHSA-9GH9-HWPR-RVQQ uutils coreutils has a Time-of-Check to Time-of-Use (TOCTOU) race condition

A Time-of-Check to Time-of-Use TOCTOU race condition exists in the mkfifo utility of uutils coreutils. The utility creates a FIFO and then performs a path-based chmod to set permissions. A local attacker with write access to the parent directory can swap the newly created FIFO for a symbolic link...

EUVD•added 2026/04/22 6:31 p.m.•1 views

Exploits1References6

EUVD-2026-24986

EUVD•added 2026/04/22 6:31 p.m.•0 views

EUVD-2026-24969

A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo fails to create a FIFO because a file already exists at the target path, it fails to terminate the operation for that path and continues to execute a follow-up...

Github Security Blog•added 2026/04/22 6:31 p.m.•3 views

uutils coreutils allows unauthorized modification of permissions on existing files

7.1CVSS5.5AI score0.00006EPSS

Exploits1References3Affected Software1

OSV•added 2026/04/22 6:31 p.m.•1 views

GHSA-W8M4-4V35-V6X3 uutils coreutils allows unauthorized modification of permissions on existing files

NVD•added 2026/04/22 5:16 p.m.•2 views

CVE-2026-35352

7CVSS0.00006EPSS

Exploits1References4

NVD•added 2026/04/22 5:16 p.m.•3 views

CVE-2026-35341

7.1CVSS0.00006EPSS

OSV•added 2026/04/22 5:16 p.m.•0 views

UBUNTU-CVE-2026-35341

UbuntuCve•added 2026/04/22 5:16 p.m.•1 views

CVE-2026-35341

Cvelist•added 2026/04/22 4:8 p.m.•25 views

CVE-2026-35352 uutils coreutils mkfifo Privilege Escalation via TOCTOU Race Condition

7CVSS0.00006EPSS

Vulnrichment•added 2026/04/22 4:8 p.m.•2 views

CVE-2026-35352 uutils coreutils mkfifo Privilege Escalation via TOCTOU Race Condition

ATTACKERKB•added 2026/04/22 4:8 p.m.•1 views

CVE-2026-35352

Debian CVE•added 2026/04/22 4:7 p.m.•2 views

CVE-2026-35341

7.1CVSS5.5AI score0.00006EPSS

Exploits1

Vulnrichment•added 2026/04/22 4:7 p.m.•1 views

CVE-2026-35341 uutils coreutils mkfifo Unauthorized Permission Change on Existing Files

CVE•added 2026/04/22 4:7 p.m.•6 views

CVE-2026-35341

The CVE-2026-35341 entry concerns uutils coreutils mkfifo. The vulnerability arises when mkfifo tries to create a FIFO but a file already exists at the target path; the operation for that path does not terminate and a follow-up set_permissions call executes, changing the existing file’s permissio...

Exploits1References1Affected Software1

ATTACKERKB•added 2026/04/22 4:7 p.m.•0 views

CVE-2026-35341

CNNVD•added 2026/04/22 12:0 a.m.•3 views

uutils coreutils 安全漏洞

uutils coreutils is a cross-platform core command-line toolset developed by Uutils Open Source. There is a security vulnerability in uutils coreutils, which stems from a timing race condition in the mkfifo utility. The utility creates a FIFO and then performs a path-based chmod operation to set...

Tenable Nessus•added 2026/04/22 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-35352

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Time-of-Check to Time-of-Use TOCTOU race condition exists in the mkfifo utility of uutils coreutils. The utility creates a FIFO and then performs a path-based...

7CVSS6AI score0.00006EPSS

Tenable Nessus•added 2026/04/22 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-35341

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo fails to create a FIFO because...