Vulnerability Description
A time-of-check time-of-use (TOCTOU) race condition vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow local attackers who have gained user access to gain access to otherwise unauthorized resources. We have already fixed the vulnerability in the following versions: QVPN Device Client for Mac 2.2.5 and later Qsync for Mac 5.1.3 and later Qfinder Pro Mac 7.11.1 and later
Related Weaknesses (CWE)
References
FAQ
What is CVE-2024-53694?
CVE-2024-53694 is a documented vulnerability. A time-of-check time-of-use (TOCTOU) race condition vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow local attackers who have gained user...
How severe is CVE-2024-53694?
CVSS scoring is not yet available for CVE-2024-53694. Check NVD for updates.
Is there a patch for CVE-2024-53694?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.