Vulnerabilities > Pengutronix > Rauc > 1.2

DATE	CVE	VULNERABILITY TITLE	RISK
2020-12-21	CVE-2020-25860	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Pengutronix Rauc The install.c module in the Pengutronix RAUC update client prior to version 1.5 has a Time-of-Check Time-of-Use vulnerability, where signature verification on an update file takes place before the file is reopened for installation. network high complexity pengutronix CWE-367	7.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.