Security Advisory

CVE-2024-8244

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-06 15:32:27

Last updated 2025-11-03 19:47:26

Assigner Go

State PUBLISHED

Description

The filepath.Walk and filepath.WalkDir functions are documented as not following symbolic links, but both functions are susceptible to a TOCTOU (time of check/time of use) race condition where a portion of the path being walked is replaced with a symbolic link while the walk is in progress.

← Browse all CVEs View on cve.org ↗