GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,282
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,105
Rust
1,490
Swift
61
Unreviewed advisories
All unreviewed
5,000+
2,268 advisories
Filter by severity
Concurrent execution using shared resource with improper synchronization ('race condition') in...
High
Unreviewed
CVE-2026-34342
was published
May 12, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in...
High
Unreviewed
CVE-2026-33839
was published
May 12, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in...
High
Unreviewed
CVE-2026-34334
was published
May 12, 2026
Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate...
High
Unreviewed
CVE-2026-34337
was published
May 12, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in...
High
Unreviewed
CVE-2026-32161
was published
May 12, 2026
A race condition in Ivanti Secure Access Client before 22.8R6 allows a locally authenticated user...
High
Unreviewed
CVE-2026-7432
was published
May 12, 2026
Dalfox has an Unauthenticated Remote DoS via Closed-Channel Write in `ParameterAnalysis` (server mode)
High
CVE-2026-45090
was published
for
github.com/hahwul/dalfox
(Go)
May 12, 2026
A race condition was addressed with additional validation. This issue is fixed in iOS 18.7.9 and...
Moderate
Unreviewed
CVE-2026-43659
was published
May 11, 2026
A race condition was addressed with additional validation. This issue is fixed in iOS 26.5 and...
Moderate
Unreviewed
CVE-2026-28996
was published
May 11, 2026
A race condition was addressed with additional validation. This issue is fixed in iOS 18.7.9 and...
High
Unreviewed
CVE-2026-28986
was published
May 11, 2026
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS...
Moderate
Unreviewed
CVE-2026-28992
was published
May 11, 2026
A race condition was addressed with improved handling of symbolic links. This issue is fixed in...
High
Unreviewed
CVE-2026-28924
was published
May 11, 2026
A race condition was addressed with additional validation. This issue is fixed in macOS Tahoe 26...
Moderate
Unreviewed
CVE-2026-28830
was published
May 11, 2026
free5GC's BSF concurrent PUT /nbsf-management/v1/subscriptions/{subId} crashes the BSF process via concurrent map read/write on Subscriptions
Moderate
CVE-2026-44318
was published
for
github.com/free5gc/bsf
(Go)
May 8, 2026
In the Linux kernel, the following vulnerability has been resolved:
nvme-pci: Fix race bug in...
Moderate
Unreviewed
CVE-2026-43448
was published
May 8, 2026
In the Linux kernel, the following vulnerability has been resolved:
cgroup: fix race between...
Moderate
Unreviewed
CVE-2026-43439
was published
May 8, 2026
In the Linux kernel, the following vulnerability has been resolved:
usb: yurex: fix race in...
Moderate
Unreviewed
CVE-2026-43430
was published
May 8, 2026
In the Linux kernel, the following vulnerability has been resolved:
scsi: ufs: core: Fix SError...
Moderate
Unreviewed
CVE-2026-43415
was published
May 8, 2026
In the Linux kernel, the following vulnerability has been resolved:
i3c: mipi-i3c-hci: Fix race...
High
Unreviewed
CVE-2026-43353
was published
May 8, 2026
In the Linux kernel, the following vulnerability has been resolved:
usb: gadget: f_rndis:...
Moderate
Unreviewed
CVE-2026-43342
was published
May 8, 2026
Gotenberg has an unauthenticated denial of service via echo.Context pool reuse in webhook async goroutine
High
CVE-2026-42594
was published
for
github.com/gotenberg/gotenberg/v8
(Go)
May 7, 2026
Race in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had...
Moderate
Unreviewed
CVE-2026-7960
was published
May 6, 2026
Race in Shared Storage in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had...
Low
Unreviewed
CVE-2026-7954
was published
May 6, 2026
Race in Chromoting in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to...
High
Unreviewed
CVE-2026-7948
was published
May 6, 2026
In the Linux kernel, the following vulnerability has been resolved:
scsi: ufs: core: Flush...
Moderate
Unreviewed
CVE-2026-43275
was published
May 6, 2026
ProTip!
Advisories are also available from the
GraphQL API