Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,786 advisories

Loading
Agno session state overwrites between different sessions/users High
CVE-2025-64168 was published for agno (pip) Oct 31, 2025
JasonLovesDoggo
Credited to JasonLovesDoggo
node-tar has a race condition leading to uninitialized memory exposure Moderate
CVE-2025-64118 was published for tar (npm) Oct 30, 2025
ChALkeR
Credited to ChALkeR
In the Linux kernel, the following vulnerability has been resolved: fscache: Fix invalidation... Moderate Unreviewed
CVE-2022-49655 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: zsmalloc: fix races between... Moderate Unreviewed
CVE-2022-49554 was published Oct 22, 2025
In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Fix race in... Moderate Unreviewed
CVE-2022-49540 was published Oct 21, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59282 was published Oct 14, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59205 was published Oct 14, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59195 was published Oct 14, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59196 was published Oct 14, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59193 was published Oct 14, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-58727 was published Oct 14, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-55687 was published Oct 14, 2025
Use after free in Xbox allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-53768 was published Oct 14, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-55328 was published Oct 14, 2025
Use after free in Windows NTFS allows an unauthorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-55335 was published Oct 14, 2025
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-53150 was published Oct 14, 2025
A concurrent execution using shared resource with improper synchronization ('Race Condition')... Moderate Unreviewed
CVE-2025-54973 was published Oct 14, 2025
A vulnerability was detected in Tomofun Furbo 360 up to FB0035_FW_036. Impacted is an unknown... Moderate Unreviewed
CVE-2025-11637 was published Oct 12, 2025
In the Linux kernel, the following vulnerability has been resolved: igmp: Fix data-races around... Moderate Unreviewed
CVE-2022-49589 was published Oct 1, 2025
Quadient DS-700 iQ devices through 2025-09-30 might have a race condition during the quick... Moderate Unreviewed
CVE-2025-61792 was published Oct 1, 2025
Repository Credentials Race Condition Crashes Argo CD Server Moderate
CVE-2025-55191 was published for github.com/argoproj/argo-cd/v2 (Go) Sep 30, 2025
thevilledev
Credited to thevilledev
In the Linux kernel, the following vulnerability has been resolved: IB/rdmavt: add lock to call... Moderate Unreviewed
CVE-2022-49089 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix call timer start... Moderate Unreviewed
CVE-2022-49149 was published Sep 23, 2025
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')... Moderate Unreviewed
CVE-2025-59577 was published Sep 22, 2025
A vulnerability has been found in Smartstore up to 6.2.0. The affected element is an unknown... Low Unreviewed
CVE-2025-10778 was published Sep 22, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database