Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-367 (检查时间与使用时间(TOCTOU)的竞争条件) — Vulnerability Class 310

310 vulnerabilities classified as CWE-367 (检查时间与使用时间(TOCTOU)的竞争条件). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-24413 Dell Technologies Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 4.4 Medium2022-04-12
CVE-2022-27834 Samsung SMR资源管理错误漏洞 — Samsung Mobile Devices 2.9 Low2022-04-11
CVE-2022-0280 McAfee Total Protection (MTP) - File Deletion vulnerability — McAfee Total Protection for Windows 7.5 High2022-03-10
CVE-2022-23653 B2 Command Line Tool TOCTOU application key disclosure — B2_Command_Line_Tool 4.7 Medium2022-02-23
CVE-2022-23651 b2-sdk-python TOCTOU application key disclosure — b2-sdk-python 4.7 Medium2022-02-23
CVE-2022-23563 Insecure temporary file in Tensorflow — tensorflow 7.1 High2022-02-04
CVE-2020-8562 Bypass of Kubernetes API Server proxy TOCTOU — Kubernetes 2.2 Low2022-02-01
CVE-2022-23181 Local privilege escalation with FileStore — Apache Tomcat 7.0 -2022-01-27
CVE-2022-23029 F5 BIG-IP 安全漏洞 — BIG-IP 5.3 -2022-01-25
CVE-2021-4001 Linux kernel 安全漏洞 — kernel 4.1 -2022-01-21
CVE-2011-4126 Calibre 授权问题漏洞 — Calibre 8.1 -2021-10-27
CVE-2021-34788 Cisco AnyConnect Secure Mobility Client for Linux and Mac OS with VPN Posture (HostScan) Module Shared Library Hijacking Vulnerability — Cisco AnyConnect Secure Mobility Client 7.0 High2021-10-06
CVE-2021-3054 PAN-OS: Unsigned Code Execution During Plugin Installation Race Condition Vulnerability — PAN-OS 7.2 High2021-09-08
CVE-2021-0289 Junos OS: User-defined ARP Policer isn't applied on Aggregated Ethernet (AE) interface until firewall process is restarted — Junos OS 6.5 Medium2021-07-15
CVE-2021-32708 Time-of-check Time-of-use (TOCTOU) Race Condition in league/flysystem — flysystem 9.8 Critical2021-06-24
CVE-2021-1567 Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability — Cisco AnyConnect Secure Mobility Client 7.0 High2021-06-16
CVE-2021-20181 QEMU 竞争条件问题漏洞 — qemu 6.6 -2021-05-13
CVE-2021-31427 Corel Parallels Desktop 安全漏洞 — Desktop 6.5 -2021-04-29
CVE-2021-31422 Corel Parallels Desktop 安全漏洞 — Desktop 6.7 -2021-04-29
CVE-2020-25860 Pengutronix RAUC 安全漏洞 — Pengutronix RAUC 6.6 -2020-12-21
CVE-2020-27252 Medtronic MyCareLink Smart Time-of-check Time-of-use Race Condition — Smart Model 25000 Patient Reader 8.8 High2020-12-14
CVE-2020-12926 Trusted Platform Modules 访问控制错误漏洞 — AMD's fTPM implementation 6.4 -2020-11-12
CVE-2020-8354 Lenovo 安全漏洞 — BIOS 6.4 Medium2020-11-11
CVE-2020-24428 Acrobat Reader DC for macOS Race Condition Vulnerability Could Lead to Privilege Escalation — Acrobat Reader 7.7 High2020-11-05
CVE-2020-8332 IBM System x servers 安全漏洞 — System x 6.4 Medium2020-10-14
CVE-2020-14375 Ubuntu DPDK 代码问题漏洞 — dpdk 7.8 -2020-09-30
CVE-2020-8342 Lenovo System Update 安全漏洞 — System Update 7.3 High2020-09-15
CVE-2020-15702 TOCTOU in apport — apport 7.0 High2020-08-06
CVE-2020-2032 GlobalProtect App: File race condition vulnerability leads to local privilege escalation during upgrade — GlobalProtect App 7.0 High2020-06-10
CVE-2020-8833 Apport race condition in crash report permissions — Apport 5.6 Medium2020-04-22

Vulnerabilities classified as CWE-367 (检查时间与使用时间(TOCTOU)的竞争条件) represent 310 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.