Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2500 matches found

Positive Technologies
Positive Technologiesadded 2026/01/13 12:0 a.m.3 views

PT-2026-2706

CVE-2026-20861 Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Management Services allows an authorized attacker to elevate pr… https://t.co/7rh4yHRbHT...

7.8CVSS7AI score0.00288EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/01/13 12:0 a.m.3 views

PT-2026-2659

Name of the Vulnerable Software and Affected Versions versions prior to 2.3 Description A flaw exists due to concurrent execution using a shared resource with improper synchronization, specifically a race condition within the Printer Association Object. This allows a locally authorized attacker t...

7CVSS6.5AI score0.00297EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2026/01/13 12:0 a.m.4 views

PT-2026-2736

CVE-2026-20934 Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SMB Server allows an authorized attacker to elevate privileges … https://t.co/zKlEBGeVSJ...

7.5CVSS7AI score0.00784EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/01/09 11:22 a.m.3 views

CVE-2021-22378

There is a race condition vulnerability in eCNS280TD V100R005C00 and V100R005C10. There is a timing window exists in which the database can be operated by another thread that is operating concurrently. Successful exploit may cause the affected device abnormal...

5.3CVSS6.7AI score0.00398EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 8:38 a.m.3 views

CVE-2026-21697

axios4go is a Go HTTP client library. Prior to version 0.6.4, a race condition vulnerability exists in the shared HTTP client configuration. The global defaultClient is mutated during request execution without synchronization, directly modifying the shared http.Client's Transport, Timeout, and...

8.2CVSS6.9AI score0.00363EPSS
Exploits0References1
Snyk
Snykadded 2026/01/08 4:41 p.m.4 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to the lack of resource-limiting controls in the gRPC, HTTPS, and HTTP3 server implementations. An attacker can exhaust memory and cause the server to degrade or crash by opening...

8.7CVSS6.8AI score0.00418EPSS
Exploits0References2
Snyk
Snykadded 2026/01/08 4:41 p.m.2 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to the lack of resource-limiting controls in the gRPC, HTTPS, and HTTP3 server implementations. An attacker can exhaust memory and cause the server to degrade or crash by opening...

8.7CVSS6.8AI score0.00418EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/01/08 3:14 a.m.5 views

CVE-2025-47337

Memory corruption while accessing a synchronization object during concurrent operations...

6.7CVSS7.1AI score0.00075EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/08 3:14 a.m.4 views

CVE-2025-47356

Memory Corruption when multiple threads concurrently access and modify shared resources...

7.8CVSS7.1AI score0.00072EPSS
Exploits0References1
NVD
NVDadded 2026/01/07 11:15 p.m.7 views

CVE-2026-21697

axios4go is a Go HTTP client library. Prior to version 0.6.4, a race condition vulnerability exists in the shared HTTP client configuration. The global defaultClient is mutated during request execution without synchronization, directly modifying the shared http.Client's Transport, Timeout, and...

8.2CVSS0.00363EPSS
Exploits0References3
Snyk
Snykadded 2026/01/07 10:55 p.m.2 views

Race Condition

Overview Affected versions of this package are vulnerable to Race Condition via the Request function in the client.go file. An attacker can access or leak proxy configuration and potentially sensitive data by exploiting concurrent requests that mutate shared HTTP client properties without...

8.2CVSS6.8AI score0.00363EPSS
Exploits0References2
CVE
CVEadded 2026/01/07 10:29 p.m.14 views

CVE-2026-21697

CVE-2026-21697 affects the Go HTTP client library axios4go. Prior to version 0.6.4, a race condition mutates the shared default http.Client configuration during request execution without synchronization, directly altering Transport, Timeout, and CheckRedirect. This can enable leakage of proxy con...

8.2CVSS6.5AI score0.00363EPSS
Exploits0References3Affected Software1
EUVD
EUVDadded 2026/01/07 10:29 p.m.7 views

EUVD-2026-1381

axios4go is a Go HTTP client library. Prior to version 0.6.4, a race condition vulnerability exists in the shared HTTP client configuration. The global defaultClient is mutated during request execution without synchronization, directly modifying the shared http.Client's Transport, Timeout, and...

8.2CVSS6.4AI score0.00363EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/01/07 10:29 p.m.2 views

CVE-2026-21697 axios4go's Race Condition in Shared HTTP Client Allows Proxy Configuration Leak

axios4go is a Go HTTP client library. Prior to version 0.6.4, a race condition vulnerability exists in the shared HTTP client configuration. The global defaultClient is mutated during request execution without synchronization, directly modifying the shared http.Client's Transport, Timeout, and...

8.2CVSS6.5AI score0.00363EPSS
Exploits0References3
OSV
OSVadded 2026/01/07 10:29 p.m.4 views

CVE-2026-21697 axios4go's Race Condition in Shared HTTP Client Allows Proxy Configuration Leak

axios4go is a Go HTTP client library. Prior to version 0.6.4, a race condition vulnerability exists in the shared HTTP client configuration. The global defaultClient is mutated during request execution without synchronization, directly modifying the shared http.Client's Transport, Timeout, and...

8.2CVSS6.6AI score0.00363EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/01/07 3:24 p.m.23 views

CVE-2026-22542 DENIAL OF SERVICE FOR CONCURRENT CONNECTIONS ON TELNET

An attacker with access to the system's internal network can cause a denial of service on the system by making two concurrent connections through the Telnet service...

9.2CVSS0.00359EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/01/07 3:24 p.m.3 views

CVE-2026-22542 DENIAL OF SERVICE FOR CONCURRENT CONNECTIONS ON TELNET

An attacker with access to the system's internal network can cause a denial of service on the system by making two concurrent connections through the Telnet service...

9.2CVSS6.3AI score0.00359EPSS
Exploits0References1
CVE
CVEadded 2026/01/07 3:24 p.m.12 views

CVE-2026-22542

The CVE-2026-22542 entry concerns EFACEC charging systems where an attacker on the internal network can cause a denial of service by establishing two concurrent Telnet connections to the system. The root cause is exposure of the Telnet service to concurrent connections leading to availability imp...

9.2CVSS6.3AI score0.00359EPSS
Exploits0References1
NVD
NVDadded 2026/01/07 12:17 p.m.3 views

CVE-2025-47356

Memory Corruption when multiple threads concurrently access and modify shared resources...

7.8CVSS0.00072EPSS
Exploits0References1
NVD
NVDadded 2026/01/07 12:17 p.m.7 views

CVE-2025-47337

Memory corruption while accessing a synchronization object during concurrent operations...

6.7CVSS0.00075EPSS
Exploits0References1
Rows per page
Query Builder