Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,811 advisories

Loading
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-62217 was published Nov 11, 2025
Double free in Microsoft Wireless Provisioning System allows an authorized attacker to elevate... High Unreviewed
CVE-2025-62219 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... Moderate Unreviewed
CVE-2025-60723 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-62218 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-62215 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59507 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59506 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59508 was published Nov 11, 2025
In JetBrains YouTrack before 2025.3.104432 a race condition allowed bypass of helpdesk Agent limit Low Unreviewed
CVE-2025-64773 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-54115 was published Sep 9, 2025
Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially... High Unreviewed
CVE-2025-12432 was published Nov 10, 2025
Race in Storage in Google Chrome on Windows prior to 142.0.7444.59 allowed a remote attacker who... Moderate Unreviewed
CVE-2025-12434 was published Nov 10, 2025
In the Linux kernel, the following vulnerability has been resolved: xsk: Fix race condition in... Moderate Unreviewed
CVE-2025-37920 was published May 20, 2025
In the Linux kernel, the following vulnerability has been resolved: KVM: Initialize... Moderate Unreviewed
CVE-2022-49884 was published May 1, 2025
In JetBrains Hub before 2025.3.104432 a race condition allowed bypass of the Agent-user limit Low Unreviewed
CVE-2025-64682 was published Nov 10, 2025
In JetBrains Hub before 2025.3.104432 information disclosure was possible via the Users API Moderate Unreviewed
CVE-2025-64683 was published Nov 10, 2025
In the Linux kernel, the following vulnerability has been resolved: kcm: close race conditions... Moderate Unreviewed
CVE-2022-49814 was published May 1, 2025
In the Linux kernel, the following vulnerability has been resolved: tracing: Fix race where... Moderate Unreviewed
CVE-2022-49798 was published May 1, 2025
In the Linux kernel, the following vulnerability has been resolved: dm ioctl: fix misbehavior if... Moderate Unreviewed
CVE-2022-49771 was published May 1, 2025
In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd: Fix crash due... Moderate Unreviewed
CVE-2022-49781 was published May 1, 2025
Apache Tomcat Utilities is vulnerable to resource exhaustion when using the APR/Native connector Moderate
CVE-2025-52434 was published for org.apache.tomcat:tomcat-util (Maven) Jul 10, 2025
In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Fix race... Moderate Unreviewed
CVE-2025-23151 was published May 1, 2025
Agno session state overwrites between different sessions/users High
CVE-2025-64168 was published for agno (pip) Oct 31, 2025
JasonLovesDoggo dirkbrnd
Credited to JasonLovesDoggo and dirkbrnd
[This CNA information record relates to multiple CVEs; the text explains which aspects... High Unreviewed
CVE-2025-58145 was published Sep 11, 2025
An attacker can make the Node.js HTTP/2 server completely unavailable by sending a small amount... High Unreviewed
CVE-2024-27983 was published Apr 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database