GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
672 advisories
Filter by severity
Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later allows physically proximate...
Moderate
Unreviewed
CVE-2010-4012
was published
May 17, 2022
Race condition in firmware for some Intel(R) Optane(TM) SSD, Intel(R) Optane(TM) SSD DC and Intel...
Moderate
Unreviewed
CVE-2021-33075
was published
May 13, 2022
A race condition is present in the crash generation server used to generate data for the crash...
Moderate
Unreviewed
CVE-2019-9818
was published
May 24, 2022
In the Android kernel in the FingerTipS touchscreen driver there is a possible memory corruption...
Moderate
Unreviewed
CVE-2019-9450
was published
May 24, 2022
Race condition within a thread in firmware for some Intel(R) Optane(TM) SSD and Intel(R) SSD DC...
Moderate
Unreviewed
CVE-2021-33078
was published
May 13, 2022
In the Android kernel in the video driver there is a use after free due to a race condition. This...
Moderate
Unreviewed
CVE-2019-9458
was published
May 24, 2022
A race condition which may occur when discarding malformed packets can result in BIND exiting due...
Moderate
Unreviewed
CVE-2019-6471
was published
May 24, 2022
KVM in the Linux kernel on Power8 processors has a conflicting use of HSTATE_HOST_R1 to store r1...
Moderate
Unreviewed
CVE-2020-8834
was published
May 24, 2022
A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to...
Moderate
Unreviewed
CVE-2021-23133
was published
May 24, 2022
In System UI, there is a possible bypass of user's consent for access to sensor data due to a...
Moderate
Unreviewed
CVE-2019-2219
was published
May 24, 2022
A race condition was found in the mkhomedir tool shipped with the oddjob package in versions...
Moderate
Unreviewed
CVE-2020-10737
was published
May 24, 2022
Under certain conditions, when retrieving a document from a DocShell in the antitracking code, a...
Moderate
Unreviewed
CVE-2019-17011
was published
May 24, 2022
Under certain conditions, when checking the Resist Fingerprinting preference during device...
Moderate
Unreviewed
CVE-2019-17010
was published
May 24, 2022
init_tmp in TeeJee.FileSystem.vala in Timeshift before 20.03 unsafely reuses a preexisting...
Moderate
Unreviewed
CVE-2020-10174
was published
May 24, 2022
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in pyftpdlib
Moderate
CVE-2009-5011
was published
for
pyftpdlib
(pip)
May 2, 2022
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in pyftpdlib
Moderate
CVE-2009-5010
was published
for
pyftpdlib
(pip)
May 2, 2022
Concurrent Execution using Shared Resource with Improper Synchronization in pyftpdlib
Moderate
CVE-2010-3494
was published
for
pyftpdlib
(pip)
May 17, 2022
Razer Chroma SDK Rest Server through 3.12.17 allows remote attackers to execute arbitrary...
Moderate
Unreviewed
CVE-2020-16602
was published
May 24, 2022
A race condition vulnerability on Juniper Network Junos OS devices may cause the routing protocol...
Moderate
Unreviewed
CVE-2020-1629
was published
May 24, 2022
Go before 1.13.13 and 1.14.x before 1.14.5 has a data race in some net/http servers, as...
Moderate
Unreviewed
CVE-2020-15586
was published
May 24, 2022
An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of...
Moderate
Unreviewed
CVE-2020-11739
was published
May 24, 2022
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows local privilege escalation via...
Moderate
Unreviewed
CVE-2020-9475
was published
May 24, 2022
An issue was discovered in OpenVPN 2.4.x before 2.4.9. An attacker can inject a data channel v2 ...
Moderate
Unreviewed
CVE-2020-11810
was published
May 24, 2022
By misusing a race in our notification code, an attacker could have forcefully hidden the...
Moderate
Unreviewed
CVE-2021-43538
was published
Dec 9, 2021
A race condition when running shutdown code for Web Worker led to a use-after-free vulnerability....
Moderate
Unreviewed
CVE-2020-12387
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API