Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,004
Maven
5,000+
npm
5,000+
NuGet
974
pip
5,000+
Pub
13
RubyGems
1,069
Rust
1,395
Swift
61
Unreviewed advisories
All unreviewed
5,000+

2,224 advisories

Loading
Race in Codecs in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who... High Unreviewed
CVE-2026-10940 was published Jun 5, 2026
AdGuard Home: DoQ-to-UDP State Reduction and Source-Port Oracle Moderate
CVE-2026-47703 was published for github.com/AdguardTeam/AdGuardHome (Go) Jun 4, 2026
N0zoM1z0 Credited to N0zoM1z0
In the Linux kernel, the following vulnerability has been resolved: coresight: tmc-etr: Fix race... Moderate Unreviewed
CVE-2026-46272 was published Jun 3, 2026
A security flaw has been discovered in Open5GS up to 2.7.6. The impacted element is the function... Low Unreviewed
CVE-2026-10565 was published Jun 2, 2026
A race condition in the shared Extreme Platform ONE IAM Gateway API-key authentication path could... Moderate Unreviewed
CVE-2026-9831 was published May 30, 2026
Gotenberg has a Race Condition via Multipart `downloadFrom` Handling High
CVE-2026-45742 was published for github.com/gotenberg/gotenberg/v8 (Go) May 29, 2026
uokik Credited to uokik
Race in WebRTC in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to... Low Unreviewed
CVE-2026-9959 was published May 29, 2026
Race in WebAudio in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute... High Unreviewed
CVE-2026-10006 was published May 29, 2026
In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: fix kthread... Moderate Unreviewed
CVE-2026-46187 was published May 28, 2026
In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix data... High Unreviewed
CVE-2026-46157 was published May 28, 2026
IBM WebSphere Application Server - Liberty 22.0.0.11 through 26.0.0.5 IBM WebSphere Application... Moderate Unreviewed
CVE-2026-5516 was published May 27, 2026
A race condition was addressed with additional validation. This issue is fixed in macOS Sequoia... High Unreviewed
CVE-2025-46284 was published May 27, 2026
NVIDIA Display Driver for Linux contains a vulnerability in a kernel module, where a user could... Moderate Unreviewed
CVE-2026-24199 was published May 26, 2026
An issue was discovered in Ruby 4 before 4.0.5. A race condition leading to a use-after-free in... High Unreviewed
CVE-2026-46727 was published May 26, 2026
Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14... Moderate Unreviewed
CVE-2026-4635 was published May 26, 2026
ImageMagick: Race Condition in distributed pixel cache server can result in file descriptor hijacking Moderate
CVE-2026-46693 was published for Magick.NET-Q16-AnyCPU (NuGet) May 22, 2026
SecurinDisclose Credited to SecurinDisclose
A race condition in the privilege toggle mechanism in Netatalk 2.2.5 through 4.4.2 allows a local... Moderate Unreviewed
CVE-2026-44059 was published May 21, 2026
Undefined behavior may result due to a race condition leading to a use-after-free violation. If... High Unreviewed
CVE-2026-5947 was published May 20, 2026
Mailpit: Concurrent map read & write in proxy CSS rewriter - remote unauth crash (fatal error: concurrent map read and map write) Moderate
CVE-2026-45712 was published for github.com/axllent/mailpit (Go) May 19, 2026
KadirArslan Credited to KadirArslan
The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race... High Unreviewed
CVE-2026-23558 was published May 19, 2026
Sparx Pro Cloud Server is vulnerable to a Race Condition in the /data_api/dl_internal_artifact... High Unreviewed
CVE-2026-42099 was published May 19, 2026
NetBSD prior to commit ec8451e contains a race condition vulnerability in cryptodev_op() within... Moderate Unreviewed
CVE-2026-32848 was published May 18, 2026
shopper/framework: Race condition on Discount.usage_limit allows silent over-redemption Moderate
CVE-2026-47741 was published for shopper/cart (Composer) May 18, 2026
baradika Credited to baradika
A vulnerability has been found in EMQX up to 6.2.0. This affects an unknown function of the file... Low Unreviewed
CVE-2026-8741 was published May 17, 2026
Permission control vulnerability in the web. Impact: Successful exploitation of this... High Unreviewed
CVE-2026-41964 was published May 15, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database