Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,798
Maven
5,000+
npm
4,424
NuGet
772
pip
4,192
Pub
12
RubyGems
968
Rust
1,083
Swift
46
Unreviewed advisories
All unreviewed
5,000+

441 advisories

Loading
Memory corruption while handling sensor utility operations. Moderate Unreviewed
CVE-2025-47344 was published Jan 7, 2026
Memory corruption while processing a config call from userspace. Moderate Unreviewed
CVE-2025-47332 was published Jan 7, 2026
A local privilege escalation vulnerability exists in SevenCs ORCA G2 2.0.1.35 (EC2007 Kernel v5... High Unreviewed
CVE-2025-61037 was published Dec 31, 2025
Nest has a Fastify URL Encoding Middleware Bypass (TOCTOU) Moderate
CVE-2025-69211 was published for @nestjs/platform-fastify (npm) Dec 30, 2025
IBM Concert 1.0.0 through 2.1.0 could allow a local user to escalate their privileges due to a... High Unreviewed
CVE-2025-64645 was published Dec 26, 2025
BullWall Server Intrusion Protection services are initialized after login services. An... High Unreviewed
CVE-2025-62004 was published Dec 18, 2025
BullWall Server Intrusion Protection has a noticeable delay before the MFA check when connecting... High Unreviewed
CVE-2025-62003 was published Dec 18, 2025
filelock has a TOCTOU race condition which allows symlink attacks during lock file creation Moderate
CVE-2025-68146 was published for filelock (pip) Dec 16, 2025
tsigouris007 gaborbernat
Credited to tsigouris007 and gaborbernat
TOCTOU  in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files... Moderate Unreviewed
CVE-2025-9810 was published Dec 8, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.4 prior to 18.4.5,... High Unreviewed
CVE-2024-9183 was published Dec 5, 2025
Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware... High Unreviewed
CVE-2025-58407 was published Nov 17, 2025
Time-of-check time-of-use race condition for some Intel Ethernet Adapter Complete Driver Pack... Moderate Unreviewed
CVE-2025-31146 was published Nov 11, 2025
Time-of-check time-of-use race condition for some ACAT before version 3.13 within Ring 3: User... Moderate Unreviewed
CVE-2025-27725 was published Nov 11, 2025
Double fetch in sandbox kernel driver in Avast/AVG Antivirus <25.3  on windows allows local... Critical Unreviewed
CVE-2025-13032 was published Nov 11, 2025
In JetBrains dotTrace before 2025.2.5 local privilege escalation possible via race condition Moderate Unreviewed
CVE-2025-64457 was published Nov 10, 2025
In wlan STA driver, there is a possible out of bounds read due to a race condition. This could... Moderate Unreviewed
CVE-2025-20740 was published Nov 4, 2025
Nagios XI versions prior to 2011R1.9 contain privilege escalation vulnerabilities in the scripts... High Unreviewed
CVE-2011-10035 was published Oct 31, 2025
Wazuh's File Integrity Monitoring (FIM), when configured with automatic threat removal, contains... High Unreviewed
CVE-2025-34294 was published Oct 28, 2025
Creative Cloud Desktop versions 6.7.0.278 and earlier are affected by a Time-of-check Time-of-use... Moderate Unreviewed
CVE-2025-54271 was published Oct 15, 2025
Time-of-check time-of-use (toctou) race condition in Microsoft Defender for Linux allows an... High Unreviewed
CVE-2025-59497 was published Oct 14, 2025
Time-of-check time-of-use (toctou) race condition in Microsoft Graphics Component allows an... High Unreviewed
CVE-2025-59261 was published Oct 14, 2025
Time-of-check time-of-use (toctou) race condition in NtQueryInformation Token function (ntifs.h)... High Unreviewed
CVE-2025-55696 was published Oct 14, 2025
Time-of-check time-of-use (toctou) race condition in Windows Cloud Files Mini Filter Driver... High Unreviewed
CVE-2025-55680 was published Oct 14, 2025
A race condition exists in the Falcon sensor for Windows that could allow an attacker, with the... Moderate Unreviewed
CVE-2025-42701 was published Oct 8, 2025
Race condition in the Zoom Workplace VDI Plugin macOS Universal installer for VMware Horizon... Moderate Unreviewed
CVE-2025-58131 was published Sep 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database