Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

288 advisories

Loading
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24995 was published Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24993 was published Apr 19, 2024
Secure Boot Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-29062 was published Apr 9, 2024
Windows Distributed File System (DFS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-29066 was published Apr 9, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-26218 was published Apr 9, 2024
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in openEuler iSulad on Linux... High Unreviewed
CVE-2021-33632 was published Mar 25, 2024
Race condition in BIOS firmware for some Intel(R) Processors may allow a privileged user to... High Unreviewed
CVE-2023-32282 was published Mar 14, 2024
Race condition in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow... Moderate Unreviewed
CVE-2024-24692 was published Mar 13, 2024
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain a TOCTOU race condition... Moderate Unreviewed
CVE-2024-0163 was published Mar 13, 2024
Windows Print Spooler Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21433 was published Mar 12, 2024
In OpenBSD 7.4 before errata 009, a race condition between pf(4)'s processing of packets and... Unknown Unreviewed
CVE-2023-52556 was published Mar 1, 2024
The total size of the user-provided nmreq to nmreq_copyin() was first computed and then trusted... High Unreviewed
CVE-2022-23084 was published Feb 15, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21371 was published Feb 13, 2024
Windows Kernel Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2024-21362 was published Feb 13, 2024
Memory corruption in Trusted Execution Environment while deinitializing an object used for... High Unreviewed
CVE-2023-33046 was published Feb 6, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.1, watchOS... High Unreviewed
CVE-2022-48618 was published Jan 9, 2024
A race condition in GitHub Enterprise Server allows an outside collaborator to be added while a... Moderate Unreviewed
CVE-2023-6803 was published Dec 21, 2023
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on... Low Unreviewed
CVE-2023-6690 was published Dec 21, 2023
A race condition in GitHub Enterprise Server was identified that could allow an attacker... Moderate Unreviewed
CVE-2023-46649 was published Dec 21, 2023
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Ricard Torres Thumbs Rating... Moderate Unreviewed
CVE-2022-45809 was published Dec 19, 2023
TOCTOU race-condition vulnerability in Insyde InsydeH2O with Kernel 5.2 before version 05.27.29,... Moderate Unreviewed
CVE-2022-24351 was published Dec 16, 2023
A TOCTOU race condition in Samsung Mobile Processor Exynos 9820, Exynos 980, Exynos 1080, Exynos... Moderate Unreviewed
CVE-2023-42483 was published Dec 13, 2023
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in YetAnotherStarsRating.Com YASR... Low Unreviewed
CVE-2023-37867 was published Nov 30, 2023
TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM... Moderate Unreviewed
CVE-2023-20521 was published Nov 14, 2023
A time-of-check to time-of-use (TOCTOU) bug in handling of IOCTL (input/output control) requests.... Low Unreviewed
CVE-2023-5760 was published Nov 8, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database