Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,343
Erlang
31
GitHub Actions
22
Go
2,107
Maven
5,000+
npm
3,764
NuGet
679
pip
3,452
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

337 advisories

Loading
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-27539 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-43777 was published Jun 12, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31635 was published Jun 13, 2023
Time-of-check Time-of-use (TOCTOU) in the BIOS2PSP command may allow an attacker with a malicious... Moderate Unreviewed
CVE-2021-46792 was published May 9, 2023
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-26218 was published Apr 9, 2024
Secure Boot Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-29062 was published Apr 9, 2024
Windows Distributed File System (DFS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-29066 was published Apr 9, 2024
Gradio apps vulnerable to timing attacks to guess password Moderate
CVE-2024-1729 was published for gradio (pip) Feb 22, 2024
VMware Fusion(13.x prior to 13.5) contains a TOCTOU (Time-of-check Time-of-use) vulnerability... High Unreviewed
CVE-2023-34046 was published Oct 20, 2023
An issue in CatoNetworks CatoClient before v.5.4.0 allows attackers to escalate privileges and... High Unreviewed
CVE-2023-43976 was published Oct 3, 2023
he vulnerability is to delete arbitrary files in LGInstallService ("com.lge.lginstallservies")... Low Unreviewed
CVE-2023-44128 was published Sep 27, 2023
Race condition in Lapce v0.2.8 allows an attacker to elevate privileges on the system High Unreviewed
CVE-2023-3891 was published Sep 15, 2023
A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM... Moderate Unreviewed
CVE-2023-4155 was published Sep 13, 2023
BASupSrvcUpdater.exe in N-able Take Control Agent through 7.0.41.1141 before 7.0.43 has a TOCTOU... High Unreviewed
CVE-2023-27470 was published Sep 11, 2023
Unity Parsec before 8 has a TOCTOU race condition that permits local attackers to escalate... High Unreviewed
CVE-2023-37250 was published Aug 20, 2023
Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated... Moderate Unreviewed
CVE-2023-28075 was published Aug 16, 2023
The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in... High Unreviewed
CVE-2023-28576 was published Aug 8, 2023
In thermal, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20788 was published Aug 7, 2023
In thermal, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20787 was published Aug 7, 2023
In audio, there is a possible out of bounds write due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2023-20785 was published Aug 7, 2023
IBM Spectrum Protect 8.1.0.0 through 8.1.17.0 could allow a local user to cause a denial of... Moderate Unreviewed
CVE-2023-33832 was published Jul 19, 2023
Multiple vulnerabilities including an incorrect permission assignment for critical resource [CWE... High Unreviewed
CVE-2022-43946 was published Jul 6, 2023
A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in certain HP... High Unreviewed
CVE-2023-26299 was published Jun 30, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.7 before 15.8.5,... Moderate Unreviewed
CVE-2022-4143 was published Jun 28, 2023
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2023-32555 was published Jun 27, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database