CVE-2023-20620

MEDIUM Year: 2023
CVSS v3 Score
4.1
Medium
Weakness Type
CWE-367
View all →

Vulnerability Description

In adsp, there is a possible escalation of privilege due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07554558; Issue ID: ALPS07554558.

Related Vulnerabilities

CVE-2021-4001

MEDIUM
CVSS:4.1(Medium)

A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c. In this flaw, a local user with a special p...

CWE-3672021

CVE-2023-6803

MEDIUM
CVSS:4.0(Medium)

A race condition in GitHub Enterprise Server allows an outside collaborator to be added while a repository is being transferred. This vulnerability affected all versions of GitHub Enterprise Server si...

CWE-3672023

CVE-2020-13882

MEDIUM
CVSS:4.2(Medium)

CISOfy Lynis before 3.0.0 has Incorrect Access Control because of a TOCTOU race condition. The routine to check the log and report file permissions was not working as intended and could be bypassed lo...

CWE-3672020

CVE-2022-45809

LOW
CVSS:3.7(Low)

Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Ricard Torres Thumbs Rating.This issue affects Thumbs Rating: from n/a through 5.0.0.

CWE-3672022

CVE-2022-45842

LOW
CVSS:3.7(Low)

Unauth. Race Condition vulnerability in WP ULike Plugin <= 4.6.4 on WordPress allows attackers to increase/decrease rating scores.

CWE-3672022

CVE-2025-24430

LOW
CVSS:3.7(Low)

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability that could result in a secur...

CWE-3672025