GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,386 advisories
Filter by severity
A race condition was found in the Linux Kernel. Under certain conditions, an unauthenticated...
High
Unreviewed
CVE-2023-6200
was published
Jan 28, 2024
Using a javascript: URI with a setTimeout race condition, an attacker can execute unauthorized...
High
Unreviewed
CVE-2024-0605
was published
Jan 22, 2024
A use-after-free flaw was found in the Linux Kernel due to a race problem in the unix garbage...
High
Unreviewed
CVE-2023-6531
was published
Jan 21, 2024
A Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')...
Moderate
Unreviewed
CVE-2024-21601
was published
Jan 12, 2024
A race condition was addressed with improved state handling. This issue is fixed in macOS Big Sur...
High
Unreviewed
CVE-2023-42832
was published
Jan 11, 2024
Apache Answer Race Condition vulnerability
Low
CVE-2023-49619
was published
for
github.com/apache/incubator-answer
(Go)
Jan 10, 2024
Windows Hyper-V Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-20700
was published
Jan 9, 2024
Remote Desktop Client Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-21307
was published
Jan 9, 2024
snapd Race Condition vulnerability
High
CVE-2022-3328
was published
for
github.com/snapcore/snapd
(Go)
Jan 8, 2024
Duplicate Advisory: Race Condition leading to logging errors
Low
GHSA-v444-jggx-6v7f
was published
for
audited
(RubyGems)
Jan 4, 2024
•
withdrawn
The session index variable in PCM host voice audio driver initialized before PCM open, accessed...
High
Unreviewed
CVE-2023-33110
was published
Jan 2, 2024
Deis Workflow Manager race condition vulnerability
Moderate
CVE-2016-15036
was published
for
github.com/deis/workflow-manager
(Go)
Dec 23, 2023
A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs...
High
Unreviewed
CVE-2023-6546
was published
Dec 21, 2023
Defective request context handling in Self Service in LinOTP 3.x before 3.2.5 allows remote...
Moderate
Unreviewed
CVE-2023-49706
was published
Dec 19, 2023
When resolving a symlink, a race may occur where the buffer passed to `readlink` may actually be...
Moderate
Unreviewed
CVE-2023-6857
was published
Dec 19, 2023
A race condition issue discovered in Samsung Mobile Processor Exynos 9820, 980, 1080, 2100, 2200,...
Moderate
Unreviewed
CVE-2023-45864
was published
Dec 13, 2023
there is a possible use after free due to a race condition. This could lead to local escalation...
Moderate
Unreviewed
CVE-2023-48420
was published
Dec 8, 2023
In multiple functions of MetaDataBase.cpp, there is a possible UAF write due to a race condition....
High
Unreviewed
CVE-2023-40077
was published
Dec 5, 2023
github.com/go-resty/resty/v2 HTTP request body disclosure
Moderate
CVE-2023-45286
was published
for
github.com/go-resty/resty/v2
(Go)
Nov 28, 2023
The kk Star Ratings WordPress plugin before 5.4.6 does not implement atomic operations, allowing...
Moderate
Unreviewed
CVE-2023-4642
was published
Nov 27, 2023
The Gotham video-application-server service contained a race condition which would cause it to...
Low
Unreviewed
CVE-2023-30954
was published
Nov 15, 2023
In Eclipse OpenJ9 before version 0.41.0, the JVM can be forced into an infinite busy hang on a...
Moderate
Unreviewed
CVE-2023-5676
was published
Nov 15, 2023
Race condition in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an...
Moderate
Unreviewed
CVE-2023-22310
was published
Nov 14, 2023
A race condition in System Management Mode (SMM) code may allow an attacker using a compromised...
High
Unreviewed
CVE-2023-20571
was published
Nov 14, 2023
Fabric vulnerable to crosslinking transaction attack
High
CVE-2023-46132
was published
for
github.com/hyperledger/fabric
(Go)
Nov 14, 2023
ProTip!
Advisories are also available from the
GraphQL API