Vulnerabilities > Time-of-check Time-of-use (TOCTOU) Race Condition

DATE CVE VULNERABILITY TITLE RISK
2020-02-08 CVE-2019-11482 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
Sander Bos discovered a time of check to time of use (TOCTTOU) vulnerability in apport that allowed a user to cause core files to be written in arbitrary directories.
local
high complexity
canonical apport-project CWE-367
4.7
2020-02-05 CVE-2019-15126 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
An issue was discovered on Broadcom Wi-Fi client devices.
high complexity
apple broadcom CWE-367
3.1
2020-01-27 CVE-2019-17102 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Bitdefender BOX 2 Firmware
An exploitable command execution vulnerability exists in the recovery partition of Bitdefender BOX 2, version 2.0.1.91.
network
high complexity
bitdefender CWE-367
8.1
2020-01-08 CVE-2020-0003 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Google Android 8.0
In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of-check time-of-use vulnerability.
local
high complexity
google CWE-367
6.7
2019-12-26 CVE-2019-20000 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Bullguard Premium Protection 20.0.371.8
The malware scan function in BullGuard Premium Protection 20.0.371.8 has a TOCTOU issue that enables a symbolic link attack, allowing privileged files to be deleted.
network
high complexity
bullguard CWE-367
5.9
2019-12-13 CVE-2019-19793 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Cyxtera Appgate SDP
In Cyxtera AppGate SDP Client 4.1.x through 4.3.x before 4.3.2 on Windows, a local or remote user from the same domain can gain privileges.
network
low complexity
cyxtera CWE-367
8.8
2019-12-03 CVE-2013-4235 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees
local
high complexity
debian fedoraproject redhat CWE-367
4.7
2019-11-25 CVE-2012-5630 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
libuser 0.56 and 0.57 has a TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees.
6.3
2019-11-22 CVE-2015-7810 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files
local
high complexity
videolan redhat fedoraproject debian CWE-367
4.7
2019-11-21 CVE-2019-10486 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Race condition due to the lack of resource lock which will be concurrently modified in the memcpy statement leads to out of bound access in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8939, MSM8953, MSM8996AU, MSM8998, Nicobar, QCN7605, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150
local
high complexity
qualcomm CWE-367
7.0