Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
46
GitHub Actions
48
Go
3,361
Maven
5,000+
npm
5,000+
NuGet
881
pip
4,554
Pub
12
RubyGems
1,013
Rust
1,205
Swift
51
Unreviewed advisories
All unreviewed
5,000+

507 advisories

Loading
Memory corruption while processing simultaneous requests via escape path. High Unreviewed
CVE-2025-27076 was published Aug 6, 2025
Memory corruption when using Virtual cdm (Camera Data Mover) to write registers. High Unreviewed
CVE-2025-21473 was published Aug 6, 2025
Memory corruption while submitting blob data to kernel space though IOCTL. High Unreviewed
CVE-2025-21455 was published Aug 6, 2025
Race condition vulnerability in the virtualization base module. Successful exploitation of this... High Unreviewed
CVE-2025-54655 was published Aug 6, 2025
NVIDIA .run Installer for Linux and Solaris contains a vulnerability where an attacker could use... High Unreviewed
CVE-2025-23279 was published Aug 3, 2025
There exists a TOCTOU race condition in TvSettings AppRestrictionsFragment.java that lead to... Moderate Unreviewed
CVE-2025-8192 was published Jul 31, 2025
A logic error was addressed with improved error handling. This issue is fixed in macOS Sequoia 15... Moderate Unreviewed
CVE-2025-43276 was published Jul 30, 2025
In the Linux kernel, the following vulnerability has been resolved: vsock: Fix transport_*... Moderate Unreviewed
CVE-2025-38461 was published Jul 25, 2025
In the Linux kernel, the following vulnerability has been resolved: vsock: Fix transport_{g2h... Moderate Unreviewed
CVE-2025-38462 was published Jul 25, 2025
In the Linux kernel, the following vulnerability has been resolved: posix-cpu-timers: fix race... High Unreviewed
CVE-2025-38352 was published Jul 22, 2025
Time-of-check to time-of-use race condition vulnerability potentially allowed an attacker to use... Moderate Unreviewed
CVE-2025-2425 was published Jul 18, 2025
Time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized... Moderate Unreviewed
CVE-2025-48818 was published Jul 8, 2025
Time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized... Moderate Unreviewed
CVE-2025-48001 was published Jul 8, 2025
In the Linux kernel, the following vulnerability has been resolved: hwmon: (ftsteutates) Fix... Moderate Unreviewed
CVE-2025-38217 was published Jul 4, 2025
In the Linux kernel, the following vulnerability has been resolved: net: Fix TOCTOU issue in... Moderate Unreviewed
CVE-2025-38112 was published Jul 3, 2025
A race condition in the Nix, Lix, and Guix package managers allows the removal of content from... Low Unreviewed
CVE-2025-46415 was published Jun 27, 2025
PEAK-System Driver PCANFD_ADD_FILTERS Time-Of-Check Time-Of-Use Information Disclosure... Low Unreviewed
CVE-2025-6217 was published Jun 23, 2025
A race condition vulnerability exists in Armoury Crate. This vulnerability arises from a Time-of... High Unreviewed
CVE-2025-3464 was published Jun 16, 2025
An issue has been discovered in GitLab EE affecting all versions prior to 17.10.8, 17.11 prior to... Moderate Unreviewed
CVE-2024-9512 was published Jun 12, 2025
Memory corruption may occur while processing the OIS packet parser. Moderate Unreviewed
CVE-2024-53018 was published Jun 3, 2025
Memory corruption while processing I2C settings in Camera driver. Moderate Unreviewed
CVE-2024-53016 was published Jun 3, 2025
Memory corruption while processing INIT and multimode invoke IOCTL calls on FastRPC. High Unreviewed
CVE-2025-21485 was published Jun 3, 2025
Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to... Moderate Unreviewed
CVE-2025-46805 was published May 26, 2025
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the... Critical Unreviewed
CVE-2025-34027 was published May 22, 2025
containerd allows host filesystem access on pull High
CVE-2025-47290 was published for github.com/containerd/containerd/v2 (Go) May 21, 2025
tonistiigi Credited to tonistiigi
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database