Vulnerability	Vulnerable Version
M Race Condition within a Thread outray is an OutRay CLI - Expose your local server to the internet Affected versions of this package are vulnerable to Race Condition within a Thread due to the lack of transaction locking mechanisms in `main/apps/web/src/routes/api/$orgSlug/subdomains/index.ts`. An attacker can obtain more subdomains than permitted by exploiting concurrent requests. How to fix Race Condition within a Thread? Upgrade `outray` to version 0.1.5 or higher.	<0.1.5
M Time-of-check Time-of-use (TOCTOU) Race Condition outray is an OutRay CLI - Expose your local server to the internet Affected versions of this package are vulnerable to Time-of-check Time-of-use (TOCTOU) Race Condition during registration. An attacker can bypass subscription limitations by rapidly initiating multiple tunnel creation requests. How to fix Time-of-check Time-of-use (TOCTOU) Race Condition? Upgrade `outray` to version 0.1.5 or higher.	<0.1.5

Race Condition within a Thread

outray is an OutRay CLI - Expose your local server to the internet

Affected versions of this package are vulnerable to Race Condition within a Thread due to the lack of transaction locking mechanisms in main/apps/web/src/routes/api/$orgSlug/subdomains/index.ts. An attacker can obtain more subdomains than permitted by exploiting concurrent requests.

How to fix Race Condition within a Thread?

Upgrade outray to version 0.1.5 or higher.

<0.1.5

Time-of-check Time-of-use (TOCTOU) Race Condition

outray is an OutRay CLI - Expose your local server to the internet

Affected versions of this package are vulnerable to Time-of-check Time-of-use (TOCTOU) Race Condition during registration. An attacker can bypass subscription limitations by rapidly initiating multiple tunnel creation requests.

How to fix Time-of-check Time-of-use (TOCTOU) Race Condition?

Upgrade outray to version 0.1.5 or higher.

<0.1.5

Go back to all versions of this package