Vulnerabilities > Time-of-check Time-of-use (TOCTOU) Race Condition

DATE CVE VULNERABILITY TITLE RISK
2024-02-06 CVE-2023-33046 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption in Trusted Execution Environment while deinitializing an object used for license validation.
local
high complexity
qualcomm CWE-367
7.0
2024-01-09 CVE-2022-48618 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Apple products
The issue was addressed with improved checks.
local
high complexity
apple CWE-367
7.0
2023-12-22 CVE-2023-43741 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Buildkite Elastic CI Stack
A time-of-check-time-of-use race condition vulnerability in Buildkite Elastic CI for AWS versions prior to 6.7.1 and 5.22.5 allows the buildkite-agent user to bypass a symbolic link check for the PIPELINE_PATH variable in the fix-buildkite-agent-builds-permissions script.
local
high complexity
buildkite CWE-367
7.0
2023-12-21 CVE-2023-46649 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Github Enterprise Server
A race condition in GitHub Enterprise Server was identified that could allow an attacker administrator access.
local
high complexity
github CWE-367
7.0
2023-12-21 CVE-2023-6690 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Github Enterprise Server
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on transferred repositories by making a GraphQL mutation to alter repository permissions during the transfer. This vulnerability affected GitHub Enterprise Server version 3.8.0 and above and was fixed in version 3.8.12, 3.9.7, 3.10.4, and 3.11.1.
network
high complexity
github CWE-367
2.0
2023-12-21 CVE-2023-6803 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Github Enterprise Server
A race condition in GitHub Enterprise Server allows an outside collaborator to be added while a repository is being transferred.
local
high complexity
github CWE-367
4.0
2023-12-16 CVE-2022-24351 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Insyde Insydeh2O
TOCTOU race-condition vulnerability in Insyde InsydeH2O with Kernel 5.2 before version 05.27.29, Kernel 5.3 before version 05.36.29, Kernel 5.4 version before 05.44.13, and Kernel 5.5 before version 05.52.13 allows an attacker to alter data and code used by the remainder of the boot process.
local
high complexity
insyde CWE-367
4.7
2023-12-13 CVE-2023-42483 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Samsung products
A TOCTOU race condition in Samsung Mobile Processor Exynos 9820, Exynos 980, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, and Exynos 1380 can cause unexpected termination of a system.
local
high complexity
samsung CWE-367
4.7
2023-11-30 CVE-2023-37867 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in YET Another Stars Rating Project YET Another Stars Rating
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in YetAnotherStarsRating.Com YASR – Yet Another Star Rating Plugin for WordPress.This issue affects YASR – Yet Another Star Rating Plugin for WordPress: from n/a through 3.3.8.
network
high complexity
yet-another-stars-rating-project CWE-367
8.1
2023-11-14 CVE-2023-20521 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in AMD products
TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM records after memory content verification, potentially leading to loss of confidentiality or a denial of service.
high complexity
amd CWE-367
5.7