Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-367 (检查时间与使用时间(TOCTOU)的竞争条件) — Vulnerability Class 310

310 vulnerabilities classified as CWE-367 (检查时间与使用时间(TOCTOU)的竞争条件). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-23988 Rufus has Local Privilege Escalation via TOCTOU Race Condition in Fido Script Handling — rufus 7.3 High2026-01-22
CVE-2026-22281 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 3.5 Low2026-01-22
CVE-2026-1035 Org.keycloak.protocol.oidc: keycloak refresh token reuse bypass via toctou race condition — Red Hat build of Keycloak 26.4 3.1 Low2026-01-21
CVE-2026-21912 Junos OS: MX10k Series: 'show system firmware' CLI command may lead to LC480 or LC2101 line card reset — Junos OS 5.5 Medium2026-01-15
CVE-2026-22820 Outray cli is vulnerable to race conditions in tunnels creation — outray 5.3AIMediumAI2026-01-14
CVE-2026-20831 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability — Windows 10 Version 1607 7.8 High2026-01-13
CVE-2026-20816 Windows Installer Elevation of Privilege Vulnerability — Windows 10 Version 1607 7.8 High2026-01-13
CVE-2026-20809 Windows Kernel Memory Elevation of Privilege Vulnerability — Windows 10 Version 1607 7.8 High2026-01-13
CVE-2025-47344 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver — Snapdragon 6.7 Medium2026-01-06
CVE-2025-47332 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver — Snapdragon 6.7 Medium2026-01-06
CVE-2025-69211 Nest has a Fastify URL Encoding Middleware Bypass (TOCTOU) — nest 8.1 -2025-12-29
CVE-2025-64645 Multiple Vulnerabilities in IBM Concert Software. — Concert 7.7 High2025-12-26
CVE-2025-62004 BullWall Server Intrusion Protection (SIP) initialization race condition — Server Intrusion Protection 7.5 High2025-12-18
CVE-2025-62003 BullWall Server Intrusion Protection RDP MFA connection delay — Server Intrusion Protection 7.5 High2025-12-18
CVE-2025-68146 filelock has TOCTOU race condition that allows symlink attacks during lock file creation — filelock 6.3 Medium2025-12-16
CVE-2024-9183 Time-of-check Time-of-use (TOCTOU) Race Condition in GitLab — GitLab 7.7 High2025-12-05
CVE-2025-58407 GPU DDK - TOCTOU bug affecting psFWMemContext->uiPageCatBaseRegSet — Graphics DDK 7.8AIHighAI2025-11-17
CVE-2025-13032 Gen Digital Antivirus 安全漏洞 — (Free/Premiium/Ultimeat) Antivirus 9.9 Critical2025-11-11
CVE-2025-64457 编号撤回 — ReSharper, Rider and dotTrace 4.2 Medium2025-11-10
CVE-2025-64180 Manager-io/Manager: Complete Bypass of SSRF Protection via Time-of-Check Time-of-Use (TOCTOU) — Manager 10.0 Critical2025-11-07
CVE-2025-20740 mediatek Chipsets 安全漏洞 — MT7902, MT7920, MT7921, MT7922, MT7925, MT7927 4.7AIMediumAI2025-11-04
CVE-2011-10035 Nagios XI < 2011R1.9 Race Conditions in Crontab Install Scripts LPE — XI 7.0AIHighAI2025-10-30
CVE-2025-62511 yt-grabber-tui local arbitrary file overwrite via TOCTOU race in config file creation — YtGrabber-TUI 6.3 Medium2025-10-17
CVE-2025-54271 Creative Cloud Desktop | Time-of-check Time-of-use (TOCTOU) Race Condition (CWE-367) — Creative Cloud Desktop 5.6 Medium2025-10-15
CVE-2025-59497 Microsoft Defender for Linux Denial of Service Vulnerability — Microsoft Defender for Endpoint for Linux 7.0 High2025-10-14
CVE-2025-59261 Windows Graphics Component Elevation of Privilege Vulnerability — Windows 11 version 22H2 7.0 High2025-10-14
CVE-2025-55696 NtQueryInformation Token function (ntifs.h) Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2025-10-14
CVE-2025-55680 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2025-10-14
CVE-2025-42701 CrowdStrike Falcon Sensor for Windows Race Condition — Falcon sensor for Windows 5.6 Medium2025-10-08
CVE-2025-58131 Zoom Workplace VDI Plugin macOS Universal installer for VMware Horizon - Race Condition — Zoom Workplace VDI Plugin macOS Universal installer for VMware Horizon 6.6 Medium2025-09-09

Vulnerabilities classified as CWE-367 (检查时间与使用时间(TOCTOU)的竞争条件) represent 310 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.