Vulnerabilities > Time-of-check Time-of-use (TOCTOU) Race Condition
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-11 | CVE-2021-46795 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in AMD products A TOCTOU (time-of-check to time-of-use) vulnerability exists where an attacker may use a compromised BIOS to cause the TEE OS to read memory out of bounds that could potentially result in a denial of service. | 4.7 |
| 2023-01-11 | CVE-2023-20523 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in AMD products TOCTOU in the ASP may allow a physical attacker to write beyond the buffer bounds, potentially leading to a loss of integrity or denial of service. | 5.7 |
| 2023-01-09 | CVE-2022-25716 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption in Multimedia Framework due to unsafe access to the data members | 7.0 |
| 2023-01-03 | CVE-2022-32638 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Google Android 11.0/12.0/13.0 In isp, there is a possible out of bounds write due to a race condition. | 6.4 |
| 2022-12-22 | CVE-2022-22753 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Mozilla Firefox A Time-of-Check Time-of-Use bug existed in the Maintenance (Updater) Service that could be abused to grant Users write access to an arbitrary directory. | 7.1 |
| 2022-12-22 | CVE-2022-26387 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Mozilla Firefox When installing an add-on, Firefox verified the signature before prompting the user; but while the user was confirming the prompt, the underlying add-on file could have been modified and Firefox would not have noticed. | 7.5 |
| 2022-12-14 | CVE-2022-3590 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Wordpress WordPress is affected by an unauthenticated blind SSRF in the pingback feature. | 5.9 |
| 2022-12-13 | CVE-2022-44670 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Microsoft products Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability | 8.1 |
| 2022-12-12 | CVE-2022-44651 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Trendmicro Apex ONE 14.0.10349/2019 A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. | 7.0 |
| 2022-12-08 | CVE-2022-39908 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Google Android TOCTOU vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds Write. | 7.4 |