A logged in user may elevate its permissions by abusing a Time-of-Check to Time-of-Use (TOCTOU) race condition. When a particular process flow is initiated, an attacker can exploit this condition to gain unauthorized elevated privileges on the affected system.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hackerone
Published: 2023-10-25T00:24:34.090Z
Updated: 2023-10-25T00:24:34.090Z
Reserved: 2023-07-12T01:00:11.881Z
Link: CVE-2023-38041
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-10-25T18:17:28.757
Modified: 2023-10-31T15:09:45.307
Link: CVE-2023-38041
JSON object: View
Redhat Information
No data.
CWE