3 matches found
CVE-2026-2364
If a legitimate user confirms a self-update prompt or initiate an installation of a CODESYS Development System, a low privileged local attacker can gain elevated rights due to a TOCTOU vulnerability in the CODESYS installer...
kernel: TOCTOU mismatch in the NFS client code
A flaw was found in the NFSv4 implementation where when mounting a remote attacker controlled server it could return specially crafted response allow for local memory corruption and possibly privilege escalation...
Linux kernel information disclosure vulnerability (CNVD-2020-51796)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. An information disclosure vulnerability exists in Linux kernel before version 5.8.3, which stems from a TOCTOU mismatch in the NFS client code. An attacker can exploit...