Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,675
Maven
5,000+
npm
4,297
NuGet
760
pip
4,077
Pub
12
RubyGems
957
Rust
1,058
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,842 advisories

Loading
An attacker with a Looker Developer role could manipulate a LookML project to exploit a race... High Unreviewed
CVE-2025-12472 was published Nov 19, 2025
Eclipse Jersey has a Race Condition Critical
CVE-2025-12383 was published for org.glassfish.jersey.core:jersey-client (Maven) Nov 18, 2025
irene221b
Credited to irene221b
Inappropriate implementation in DevTools in Google Chrome prior to 126.0.6478.182 allowed a... High Unreviewed
CVE-2024-7017 was published Nov 14, 2025
Wasmtime provides unsound API access to a WebAssembly shared linear memory Low
CVE-2025-64345 was published for wasmtime (Rust) Nov 12, 2025
Double free in Microsoft Wireless Provisioning System allows an authorized attacker to elevate... High Unreviewed
CVE-2025-62219 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-62218 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-62217 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-62215 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... Moderate Unreviewed
CVE-2025-60723 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59507 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59506 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59508 was published Nov 11, 2025
In JetBrains YouTrack before 2025.3.104432 a race condition allowed bypass of helpdesk Agent limit Low Unreviewed
CVE-2025-64773 was published Nov 11, 2025
Race condition in the Graphics component. This vulnerability affects Firefox < 145, Firefox ESR <... High Unreviewed
CVE-2025-13012 was published Nov 11, 2025
Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially... High Unreviewed
CVE-2025-12432 was published Nov 10, 2025
Race in Storage in Google Chrome on Windows prior to 142.0.7444.59 allowed a remote attacker who... Moderate Unreviewed
CVE-2025-12434 was published Nov 10, 2025
In JetBrains Hub before 2025.3.104432 information disclosure was possible via the Users API Moderate Unreviewed
CVE-2025-64683 was published Nov 10, 2025
In JetBrains Hub before 2025.3.104432 a race condition allowed bypass of the Agent-user limit Low Unreviewed
CVE-2025-64682 was published Nov 10, 2025
A race condition was addressed with improved state handling. This issue is fixed in macOS Sonoma... Moderate Unreviewed
CVE-2025-43420 was published Nov 4, 2025
A race condition was addressed with additional validation. This issue is fixed in macOS Sonoma 14... High Unreviewed
CVE-2025-43364 was published Nov 4, 2025
Agno session state overwrites between different sessions/users High
CVE-2025-64168 was published for agno (pip) Oct 31, 2025
JasonLovesDoggo dirkbrnd
Credited to JasonLovesDoggo and dirkbrnd
node-tar has a race condition leading to uninitialized memory exposure Moderate
CVE-2025-64118 was published for tar (npm) Oct 30, 2025
ChALkeR
Credited to ChALkeR
In the Linux kernel, the following vulnerability has been resolved: fscache: Fix invalidation... Moderate Unreviewed
CVE-2022-49655 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: zsmalloc: fix races between... Moderate Unreviewed
CVE-2022-49554 was published Oct 22, 2025
In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Fix race in... Moderate Unreviewed
CVE-2022-49540 was published Oct 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database