Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,709 advisories

Loading
IBM Storage Virtualize 8.5, 8.6, and 8.7 products could allow a user to escalate their privileges... Moderate Unreviewed
CVE-2025-1351 was published Jul 7, 2025
Taylor has race condition in /get-patch that allows purchase token replay Low
GHSA-vh5j-5fhq-9xwg was published for taylored (npm) Jun 27, 2025
snyff
A race condition in the Nix, Lix, and Guix package managers enables changing the ownership of... Moderate Unreviewed
CVE-2025-52993 was published Jun 27, 2025
Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-32710 was published Jun 10, 2025
A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions < V3.2),... Moderate Unreviewed
CVE-2025-40569 was published Jun 10, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through... Moderate Unreviewed
CVE-2025-24493 was published Jun 8, 2025
Race condition in Canonical apport up to and including 2.32.0 allows a local attacker to leak... Moderate Unreviewed
CVE-2025-5054 was published May 30, 2025
Perl threads have a working directory race condition where file operations may target unintended... Moderate Unreviewed
CVE-2025-40909 was published May 30, 2025
process_lock has a Potential Unsound issue in unlock Low
CVE-2025-48751 was published for process_lock (Rust) May 24, 2025
In the anode crate 0.1.0 for Rust, data races can occur in unlock in SpinLock. Low Unreviewed
CVE-2025-48753 was published May 24, 2025
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')... Moderate Unreviewed
CVE-2025-0372 was published May 21, 2025
Next.js Race Condition to Cache Poisoning Low
CVE-2025-32421 was published for next (npm) May 15, 2025
cold-try
Race condition in some Administrative Tools for some Intel(R) Network Adapters package before... Moderate Unreviewed
CVE-2025-20104 was published May 13, 2025
Race condition for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.100... Moderate Unreviewed
CVE-2025-20039 was published May 13, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-29841 was published May 13, 2025
Improper privilege management in Windows Secure Kernel Mode allows an authorized attacker to... High Unreviewed
CVE-2025-27468 was published May 13, 2025
wgp race condition in inner::drop Low
CVE-2025-47735 was published for wgp (Rust) May 9, 2025
Rack session gets restored after deletion Moderate
CVE-2025-46336 was published for rack-session (RubyGems) May 8, 2025
stengineering0 jeremyevans
ioquatix
Rack session gets restored after deletion Moderate
CVE-2025-32441 was published for rack (RubyGems) May 8, 2025
stengineering0 jeremyevans
ioquatix
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')... Moderate Unreviewed
CVE-2025-47545 was published May 7, 2025
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 12.1.0 through 12.1.1 ... Moderate Unreviewed
CVE-2025-1493 was published May 5, 2025
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables:... Moderate Unreviewed
CVE-2022-49920 was published May 1, 2025
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables:... High Unreviewed
CVE-2022-49919 was published May 1, 2025
An issue in CatoNetworks CatoClient before v.5.8.0 allows attackers to escalate privileges and... Moderate Unreviewed
CVE-2025-3886 was published Apr 27, 2025
OpenPLC 3 through 64f9c11 has server.cpp Memory Corruption because a thread may access... High Unreviewed
CVE-2025-46613 was published Apr 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database