Lucene search
K

16 matches found

OSV
OSV
added 2026/06/25 9:16 a.m.2 views

UBUNTU-CVE-2026-53250

In the Linux kernel, the following vulnerability has been resolved: xsk: cache csumstart/csumoffset to fix TOCTOU in xskskbmetadata The TX metadata area resides in the UMEM buffer which is memory-mapped and concurrently writable by userspace. In xskskbmetadata, csumstart and csumoffset are read...

7.8CVSS5.8AI score0.00145EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/26 6:39 a.m.13 views

CVE-2026-44469

The affected product extracts installation files to a temporary directory with incorrect default permissions during administrative installation. A low-privileged local attacker can exploit a TOCTOU race condition with a practical time window to replace verified files with malicious ones before...

8.5CVSS5.8AI score0.00105EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/05/05 11:25 a.m.13 views

CVE-2026-43529

OpenClaw before 2026.4.10 has a time-of-check-time-of-use (TOCTOU) race condition in validateScriptFileForShellBleed that lets a local attacker with workspace write access bypass workspace boundary checks. The attacker can race-condition the target file swap between validation and preflight read,...

2.5CVSS5.8AI score0.00079EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/04/03 9:23 p.m.3 views

CVE-2026-27456

util-linux is a random collection of Linux utilities. Prior to version 2.41.4, a TOCTOU Time-of-Check-Time-of-Use vulnerability has been identified in the SUID binary /usr/bin/mount from util-linux. The mount binary, when setting up loop devices, validates the source file path with user privilege...

4.7CVSS5.3AI score0.00118EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/03/30 10:30 a.m.3 views

CVE-2026-25704

A flaw was found in cosmic-greeter. This vulnerability is a Time-of-check Time-of-use TOCTOU race condition, which occurs when an application checks for a condition and then uses the result of that check, but the condition changes between the check and the use. A local attacker can exploit this...

5.8CVSS5.8AI score0.00088EPSS
Exploits0References2
OSV
OSV
added 2026/03/02 8:41 a.m.3 views

BIT-GRAFANA-2026-21725 Authorization Bypass via TOCTOU in Grafana Datasource Deletion by Name

A time-of-create-to-time-of-use TOCTOU vulnerability lets recently deleted-then-recreated data sources be re-deleted without permission to do so. This requires several very stringent conditions to be met: - The attacker must have admin access to the specific datasource prior to its first deletion...

2.6CVSS6AI score0.00175EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.5 views

PT-2026-21901

Name of the Vulnerable Software and Affected Versions Grafana affected versions not specified Description A time-of-create-to-time-of-use TOCTOU issue allows re-deletion of recently deleted and recreated data sources without authorization. The attack requires specific conditions: admin access to...

8.1CVSS6AI score0.00647EPSS
Exploits1References97
CVE
CVE
added 2026/02/06 7:50 p.m.19 views

CVE-2026-25641

SandboxJS has a TOCTOU-like sandbox escape vulnerability: before 0.8.29 there is a mismatch between the validation key and the key used for property access, allowing malicious objects to coerce string keys differently for validation and access. This can enable sandbox escape and potentially remot...

10CVSS5.4AI score0.00489EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/24 3:17 a.m.19 views

CVE-2026-23988

Rufus is a utility that helps format and create bootable USB flash drives. Versions 4.11 and below contain a race condition TOCTOU in src/net.c during the creation, validation, and execution of the Fido PowerShell script. Since Rufus runs with elevated privileges Administrator but writes the scri...

7.3CVSS6.2AI score0.00188EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/01/14 3:6 p.m.4 views

CVE-2026-22820

Outray openSource ngrok alternative. Prior to 0.1.5, a TOCTOU race condition vulnerability allows a user to exceed the set number of active tunnels in their subscription plan. This vulnerability is fixed in 0.1.5...

6.3CVSS5.5AI score0.00179EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2025/10/17 12:0 a.m.3 views

YtGrabber-TUI 安全漏洞

YtGrabber-TUI is the interface of a software by the individual developer of Женя Бородин. A security vulnerability exists in YtGrabber-TUI version 1.0, which stems from a TOCTOU competition condition during the creation of the default configuration file config.json, which could lead to arbitrary...

6.3CVSS6.8AI score0.00101EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/01/25 8:2 a.m.3 views

rpm: TOCTOU race in checks for unsafe symlinks

A race condition vulnerability was found in rpm. A local unprivileged user could use this flaw to bypass the checks that were introduced in response to CVE-2017-7500 and CVE-2017-7501, potentially gaining root privileges. The highest threat from this vulnerability is to data confidentiality and...

6.4CVSS7.1AI score0.00307EPSS
Exploits1References4
OSV
OSV
added 2022/12/14 9:15 a.m.6 views

DEBIAN-CVE-2022-3590

WordPress is affected by an unauthenticated blind SSRF in the pingback feature. Because of a TOCTOU race condition between the validation checks and the HTTP request, attackers can reach internal hosts that are explicitly forbidden...

5.9CVSS5.9AI score0.0315EPSS
Exploits5References1
OSV
OSV
added 2020/09/09 4:15 p.m.2 views

DEBIAN-CVE-2020-25212

A TOCTOU mismatch in the NFS client code in the Linux kernel before 5.8.3 could be used by local attackers to corrupt memory or possibly have unspecified other impact because a size check is in fs/nfs/nfs4proc.c instead of fs/nfs/nfs4xdr.c, aka CID-b4487b935452...

7CVSS6.6AI score0.00275EPSS
Exploits0References1
OSV
OSV
added 2020/06/15 3:15 p.m.2 views

DEBIAN-CVE-2017-18869

A TOCTOU issue in the chownr package before 1.1.0 for Node.js 10.10 could allow a local attacker to trick it into descending into unintended directories via symlink attacks...

2.5CVSS6.5AI score0.00334EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2011/10/05 9:37 p.m.5 views

kernel: ecryptfs: mount source TOCTOU race

Race condition in the ecryptfsmount function in fs/ecryptfs/main.c in the eCryptfs subsystem in the Linux kernel before 3.1 allows local users to bypass intended file permissions via a mount.ecryptfsprivate mount with a mismatched uid...

3.3CVSS7.3AI score0.00358EPSS
Exploits2References4
Rows per page
Query Builder