Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,386 advisories

Loading
A race condition was found in the Linux Kernel. Under certain conditions, an unauthenticated... High Unreviewed
CVE-2023-6200 was published Jan 28, 2024
Using a javascript: URI with a setTimeout race condition, an attacker can execute unauthorized... High Unreviewed
CVE-2024-0605 was published Jan 22, 2024
A use-after-free flaw was found in the Linux Kernel due to a race problem in the unix garbage... High Unreviewed
CVE-2023-6531 was published Jan 21, 2024
A Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')... Moderate Unreviewed
CVE-2024-21601 was published Jan 12, 2024
A race condition was addressed with improved state handling. This issue is fixed in macOS Big Sur... High Unreviewed
CVE-2023-42832 was published Jan 11, 2024
Apache Answer Race Condition vulnerability Low
CVE-2023-49619 was published for github.com/apache/incubator-answer (Go) Jan 10, 2024
Windows Hyper-V Remote Code Execution Vulnerability High Unreviewed
CVE-2024-20700 was published Jan 9, 2024
Remote Desktop Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21307 was published Jan 9, 2024
snapd Race Condition vulnerability High
CVE-2022-3328 was published for github.com/snapcore/snapd (Go) Jan 8, 2024
Duplicate Advisory: Race Condition leading to logging errors Low
GHSA-v444-jggx-6v7f was published for audited (RubyGems) Jan 4, 2024 withdrawn
The session index variable in PCM host voice audio driver initialized before PCM open, accessed... High Unreviewed
CVE-2023-33110 was published Jan 2, 2024
Deis Workflow Manager race condition vulnerability Moderate
CVE-2016-15036 was published for github.com/deis/workflow-manager (Go) Dec 23, 2023
A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs... High Unreviewed
CVE-2023-6546 was published Dec 21, 2023
Defective request context handling in Self Service in LinOTP 3.x before 3.2.5 allows remote... Moderate Unreviewed
CVE-2023-49706 was published Dec 19, 2023
When resolving a symlink, a race may occur where the buffer passed to `readlink` may actually be... Moderate Unreviewed
CVE-2023-6857 was published Dec 19, 2023
A race condition issue discovered in Samsung Mobile Processor Exynos 9820, 980, 1080, 2100, 2200,... Moderate Unreviewed
CVE-2023-45864 was published Dec 13, 2023
there is a possible use after free due to a race condition. This could lead to local escalation... Moderate Unreviewed
CVE-2023-48420 was published Dec 8, 2023
In multiple functions of MetaDataBase.cpp, there is a possible UAF write due to a race condition.... High Unreviewed
CVE-2023-40077 was published Dec 5, 2023
github.com/go-resty/resty/v2 HTTP request body disclosure Moderate
CVE-2023-45286 was published for github.com/go-resty/resty/v2 (Go) Nov 28, 2023
shanduur Kryvchun
billinghamj deerbone neilgierman hansmi
The kk Star Ratings WordPress plugin before 5.4.6 does not implement atomic operations, allowing... Moderate Unreviewed
CVE-2023-4642 was published Nov 27, 2023
The Gotham video-application-server service contained a race condition which would cause it to... Low Unreviewed
CVE-2023-30954 was published Nov 15, 2023
In Eclipse OpenJ9 before version 0.41.0, the JVM can be forced into an infinite busy hang on a... Moderate Unreviewed
CVE-2023-5676 was published Nov 15, 2023
Race condition in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an... Moderate Unreviewed
CVE-2023-22310 was published Nov 14, 2023
A race condition in System Management Mode (SMM) code may allow an attacker using a compromised... High Unreviewed
CVE-2023-20571 was published Nov 14, 2023
Fabric vulnerable to crosslinking transaction attack High
CVE-2023-46132 was published for github.com/hyperledger/fabric (Go) Nov 14, 2023
yacovm
ProTip! Advisories are also available from the GraphQL API