Fallos del tipo CWE-367

504 resultados
CVE-2021-31427HIGHThis vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-47309. An EPSS 0.3%CVE-2022-33270HIGHTime-of-check time-of-use race condition in ModemEPSS 0.3%CVE-2026-48931LOWA flaw in Node.js HTTP Agent can cause a client to accept as valid a response that is send before the client has sent the request. This vEPSS 0.3%CVE-2023-24861HIGHWindows Graphics Component Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2025-46336MEDIUMRack session gets restored after deletionEPSS 0.3%CVE-2023-3891HIGHLapce v0.2.8 - Privilege escalation via Race ConditionEPSS 0.3%CVE-2023-33156MEDIUMMicrosoft Defender Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2026-21240HIGHWindows HTTP.sys Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2024-6787MEDIUMMXview One Series vulnerable to Time-of-check Time-of-use (TOCTOU) Race ConditionEPSS 0.3%CVE-2026-20677CRITICALA race condition was addressed with improved handling of symbolic links. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iEPSS 0.3%CVE-2025-54895HIGHSPNEGO Extended Negotiation (NEGOEX) Security Mechanism Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2021-0289MEDIUMJunos OS: User-defined ARP Policer isn't applied on Aggregated Ethernet (AE) interface until firewall process is restartedEPSS 0.3%CVE-2023-23389MEDIUMMicrosoft Defender Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2024-28137HIGHPHOENIX CONTACT: privilege escalation due to a TOCTOU vulnerability in the CHARX Series EPSS 0.3%CVE-2020-14375A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. Virtio ring descriptors, and the data they describe are in a regionEPSS 0.3%CVE-2026-7724LOWPrefectHQ prefect Webhook/Notification validate_restricted_url toctouEPSS 0.3%CVE-2015-1865MEDIUMfts.c in coreutils 8.4 allows local users to delete arbitrary files.EPSS 0.2%CVE-2020-8354MEDIUMA potential vulnerability in the SMI callback function used in the VariableServiceSmm driver in some Lenovo Notebook models may allow arbitrEPSS 0.2%CVE-2021-34986HIGHThis vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.5.0 (49183). An attacker EPSS 0.2%CVE-2022-23084HIGHPotential jail escape vulnerabilities in netmapEPSS 0.2%