2 matches found
CVE-2026-54370
acl before version 2.4.0 contains a time-of-check to time-of-use TOCTOU race condition vulnerability that allows local attackers to escalate privileges by replacing a pathname component with a symbolic link between an lstat check and subsequent symlink-following operations such as stat, chown,...
PT-2023-12089 · Unknown · Asp Bootloader
Name of the Vulnerable Software and Affected Versions: ASP bootloader affected versions not specified Description: A Time-of-Check-to-Time-of-Use TOCTOU issue in the ASP bootloader may allow an attacker to tamper with the SPI ROM following data read to memory, potentially resulting in S3 data...