CVE-2026-7837

Published: Mag 21, 2026 Last Modified: Mag 21, 2026

ExploitDB:

Other exploit source:

Google Dorks:

LOW 3,7

Source: 33c584b5-0579-4c06-b2a0-8d8329fcab9c

Attack Vector: network

Attack Complexity: high

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: none

Integrity: low

Availability: none

Description

AI Translation Available

A time-of-check time-of-use (TOCTOU) condition in the ad_flush function in Netatalk 3.0.0 through 4.4.2 involves root-privileged file operations, which may allow a remote attacker to cause limited data modification under specific race conditions.

367

Time-of-check Time-of-use (TOCTOU) Race Condition

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity Other Non-Repudiation

Potential Impacts:

Alter Execution Logic Unexpected State Modify Application Data Modify Files Or Directories Modify Memory Other Hide Activities

Applicable Platforms

All platforms may be affected

Likelihood of Exploit: Medium

View CWE Details

https://netatalk.io/security/CVE-2026-7837

CVE-2026-7837

Description

Time-of-check Time-of-use (TOCTOU) Race Condition

Common Consequences

Applicable Platforms

Iscriviti alla newsletter