Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,831
Maven
5,000+
npm
4,462
NuGet
775
pip
4,226
Pub
12
RubyGems
972
Rust
1,093
Swift
47
Unreviewed advisories
All unreviewed
5,000+

1,960 advisories

Loading
GraphQL Modules has a Race Condition issue High
CVE-2026-23735 was published for graphql-modules (npm) Jan 16, 2026
DuckThom enisdenjo
ardatan
Credited to DuckThom, enisdenjo, and ardatan
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful... Moderate Unreviewed
CVE-2025-68962 was published Jan 14, 2026
Multi-thread race condition vulnerability in the thermal management module. Impact: Successful... Moderate Unreviewed
CVE-2025-68969 was published Jan 14, 2026
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful... Moderate Unreviewed
CVE-2025-68961 was published Jan 14, 2026
Multi-thread race condition vulnerability in the card framework module. Impact: Successful... High Unreviewed
CVE-2025-68958 was published Jan 14, 2026
Multi-thread race condition vulnerability in the card framework module. Impact: Successful... High Unreviewed
CVE-2025-68956 was published Jan 14, 2026
Multi-thread race condition vulnerability in the card framework module. Impact: Successful... High Unreviewed
CVE-2025-68955 was published Jan 14, 2026
Multi-thread race condition vulnerability in the card framework module. Impact: Successful... High Unreviewed
CVE-2025-68957 was published Jan 14, 2026
Multi-thread race condition vulnerability in the video framework module. Impact: Successful... High Unreviewed
CVE-2025-68960 was published Jan 14, 2026
virtualenv Has TOCTOU Vulnerabilities in Directory Creation Moderate
CVE-2026-22702 was published for virtualenv (pip) Jan 13, 2026
tsigouris007
Credited to tsigouris007
filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vulnerability in SoftFileLock Moderate
CVE-2026-22701 was published for filelock (pip) Jan 13, 2026
tsigouris007
Credited to tsigouris007
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2026-21221 was published Jan 13, 2026
Use after free in Windows Management Services allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2026-20877 was published Jan 13, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2026-20919 was published Jan 13, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2026-20918 was published Jan 13, 2026
Use after free in Windows Management Services allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2026-20924 was published Jan 13, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2026-20921 was published Jan 13, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2026-20926 was published Jan 13, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in... Moderate Unreviewed
CVE-2026-20927 was published Jan 13, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2026-20934 was published Jan 13, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2026-20848 was published Jan 13, 2026
Use after free in Windows Clipboard Server allows an unauthorized attacker to elevate privileges... High Unreviewed
CVE-2026-20844 was published Jan 13, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2026-20853 was published Jan 13, 2026
Use after free in Windows Management Services allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2026-20858 was published Jan 13, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2026-20861 was published Jan 13, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database