Vulnerabilities > Time-of-check Time-of-use (TOCTOU) Race Condition

DATE CVE VULNERABILITY TITLE RISK
2025-05-13 CVE-2025-29969 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Microsoft products
Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attacker to execute code over a network.
network
high complexity
microsoft CWE-367
7.5
2025-05-08 CVE-2025-30101 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS, versions 9.8.0.0 through 9.10.1.0, contain a time-of-check time-of-use (TOCTOU) race condition vulnerability.
local
high complexity
dell CWE-367
6.3
2025-05-06 CVE-2024-45565 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption when blob structure is modified by user-space after kernel verification.
local
high complexity
qualcomm CWE-367
7.0
2025-04-28 CVE-2025-46326 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Snowflake Connector
snowflake-connector-net is the Snowflake Connector for .NET.
local
high complexity
snowflake CWE-367
7.0
2025-04-28 CVE-2025-46327 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Snowflake Gosnowflake
gosnowflake is the Snowflake Golang driver.
local
high complexity
snowflake CWE-367
7.0
2025-04-28 CVE-2025-46328 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Snowflake Connector
snowflake-connector-nodejs is a NodeJS driver for Snowflake.
local
high complexity
snowflake CWE-367
7.0
2025-04-07 CVE-2024-43067 Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.
local
low complexity
CWE-367
7.8
2025-04-07 CVE-2025-21431 Information disclosure may be there when a guest VM is connected.
local
low complexity
CWE-367
5.5
2025-04-03 CVE-2025-21998 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: uefisecapp: fix efivars registration race Since the conversion to using the TZ allocator, the efivars service is registered before the memory pool has been allocated, something which can lead to a NULL-pointer dereference in case of a racing EFI variable access. Make sure that all resources have been set up before registering the efivars.
local
high complexity
linux CWE-367
4.7
2025-03-03 CVE-2024-53028 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption may occur while processing message from frontend during allocation.
local
high complexity
qualcomm CWE-367
7.0