Vulnerabilities > Time-of-check Time-of-use (TOCTOU) Race Condition

DATE CVE VULNERABILITY TITLE RISK
2023-09-13 CVE-2023-4155 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel.
local
high complexity
linux redhat fedoraproject CWE-367
5.6
2023-09-11 CVE-2023-27470 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in N-Able Take Control 7.0.41.1141
BASupSrvcUpdater.exe in N-able Take Control Agent through 7.0.41.1141 before 7.0.43 has a TOCTOU Race Condition via a pseudo-symlink at %PROGRAMDATA%\GetSupportService_N-Central\PushUpdates, leading to arbitrary file deletion.
local
high complexity
n-able CWE-367
7.0
2023-08-20 CVE-2023-37250 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Unity Parsec 8.0
Unity Parsec has a TOCTOU race condition that permits local attackers to escalate privileges to SYSTEM if Parsec was installed in "Per User" mode.
local
high complexity
unity CWE-367
7.0
2023-08-08 CVE-2023-28576 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it.
local
high complexity
qualcomm CWE-367
7.0
2023-08-07 CVE-2023-20785 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Google Android 12.0/13.0
In audio, there is a possible out of bounds write due to a missing bounds check.
local
high complexity
google CWE-367
6.4
2023-08-07 CVE-2023-20787 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Google Android 12.0
In thermal, there is a possible use after free due to a race condition.
local
high complexity
google CWE-367
6.4
2023-08-07 CVE-2023-20788 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Google Android 12.0
In thermal, there is a possible use after free due to a race condition.
local
high complexity
google CWE-367
6.4
2023-08-02 CVE-2023-26438 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Open-Xchange Appsuite Backend 7.10.6/8.10.0
External service lookups for a number of protocols were vulnerable to a time-of-check/time-of-use (TOCTOU) weakness, involving the JDK DNS cache.
network
high complexity
open-xchange CWE-367
3.1
2023-07-19 CVE-2023-33832 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in IBM products
IBM Spectrum Protect 8.1.0.0 through 8.1.17.0 could allow a local user to cause a denial of service due to due to improper time-of-check to time-of-use functionality.
local
high complexity
ibm CWE-367
4.7
2023-07-11 CVE-2023-35311 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Microsoft 365 Apps, Office and Outlook
Microsoft Outlook Security Feature Bypass Vulnerability
network
high complexity
microsoft CWE-367
7.5