How severe is CVE-2024-26307?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.3 out of 10.

What type of vulnerability is CVE-2024-26307?

This is classified as CWE-362, which is a common weakness in software security.

CVE-2024-26307 - MEDIUM Severity | CVSS 5.3

Vulnerability Description

Possible race condition vulnerability in Apache Doris. Some of code using `chmod()` method. This method run the risk of someone renaming the file out from under user and chmodding the wrong file. This could theoretically happen, but the impact would be minimal. This issue affects Apache Doris: before 1.2.8, before 2.0.4. Users are recommended to upgrade to version 2.0.4, which fixes the issue.

Related Vulnerabilities

CVE-2010-5153

MEDIUM

CVSS:5.3(Medium)

Race condition in Avira Premium Security Suite 10.0.0.536 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler ...

CWE-3622010

CVE-2010-5164

MEDIUM

CVSS:5.3(Medium)

Race condition in KingSoft Personal Firewall 9 Plus 2009.05.07.70 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a ...

CWE-3622010

CVE-2016-1670

MEDIUM

CVSS:5.3(Medium)

Race condition in the ResourceDispatcherHostImpl::BeginRequest function in content/browser/loader/resource_dispatcher_host_impl.cc in Google Chrome before 50.0.2661.102 allows remote attackers to make...

CWE-3622016

CVE-2016-3106

MEDIUM

CVSS:5.3(Medium)

Pulp before 2.8.3 creates a temporary directory during CA key generation in an insecure manner.

CWE-3622016

CVE-2016-4247

MEDIUM

CVSS:5.3(Medium)

Race condition in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to obtain sensitive information via...

CWE-3622016

CVE-2017-14748

MEDIUM

CVSS:5.3(Medium)

Race condition in Blizzard Overwatch 1.15.0.2 allows remote authenticated users to cause a denial of service (season bans and SR losses for other users) by leaving a competitive match at a specific ti...

CWE-3622017