23 matches found
Outray cli is vulnerable to race conditions in tunnels creation
Summary A TOCTOU race condition vulnerability allows a user to exceed the set number of active tunnels in their subscription plan. Details Affected conponent: apps/web/src/routes/api/tunnel/register.ts - /tunnel/register endpoint code-: ts // Check if tunnel already exists in database const...
EUVD-2020-29676
Malware in sbrugna...
EUVD-2017-3983
Malware in sbrugna...
EUVD-2024-37969
Malicious code in bioql PyPI...
EUVD-2025-21865
Malicious code in bioql PyPI...
EUVD-2025-14027
Malicious code in bioql PyPI...
EUVD-2022-48663
Malicious code in bioql PyPI...
EUVD-2024-54242
Malicious code in bioql PyPI...
EUVD-2021-9515
Malicious code in bioql PyPI...
EUVD-2022-44915
Malicious code in bioql PyPI...
BIT-GITLAB-2024-9512 Time-of-check Time-of-use (TOCTOU) Race Condition in GitLab
An issue has been discovered in GitLab EE affecting all versions prior to 17.10.8, 17.11 prior to 17.11.4, and 18.0 prior to 18.0.2. It may have been possible for private repository to be cloned in case of race condition when a secondary node is out of sync...
CVE-2024-21792
Time-of-check Time-of-use race condition in IntelR Neural Compressor software before version 2.5.0 may allow an authenticated user to potentially enable information disclosure via local access...
CVE-2023-32554
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations. Please note: a local attacker must first obtain the ability to execute low-privileged code on the target system in...
CVE-2022-44651
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order ...
CVE-2025-30663 Zoom Workplace Apps - Time-of-check Time-of-use
Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via local access...
Time-of-check Time-of-use (TOCTOU) Race Condition
github.com/snowflakedb/gosnowflake is vulnerable to a Time-of-Check to Time-of-Use TOCTOU race condition. The vulnerability is due to insufficient file ownership validation in checking and using the logging configuration file; this allows local attackers with write access to the file or its...
Azure Linux 3.0 Security Update: postgresql (CVE-2024-7348)
The version of postgresql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-7348 advisory. - Time-of-check Time-of-use TOCTOU race condition in pgdump in PostgreSQL allows an object creator to execu...
CVE-2024-45560 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera
Memory corruption while taking a snapshot with hardware encoder due to unvalidated userspace buffer...
CVE-2021-46792
Time-of-check Time-of-use TOCTOU in the BIOS2PSP command may allow an attacker with a malicious BIOS to create a race condition causing the ASP bootloader to perform out-of-bounds SRAM reads upon an S3 resume event potentially leading to a denial of service...
CVE-2023-1586
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use TOCTOU vulnerability in the restore process leading to arbitrary file creation. The issue was fixed with Avast and AVG Antivirus version 22.11...