Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

316 advisories

Loading
DMA transactions which are targeted at input buffers used for the AhciBusDxe software SMI handler... High Unreviewed
CVE-2022-33905 was published Nov 15, 2022
DMA transactions which are targeted at input buffers used for the SmmResourceCheckDxe software... Moderate Unreviewed
CVE-2022-32267 was published Nov 15, 2022
By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security... High Unreviewed
CVE-2021-23892 was published May 24, 2022
Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport... Low Unreviewed
CVE-2020-8833 was published May 24, 2022
Race condition between the camera functions due to lack of resource lock which will lead to... Moderate Unreviewed
CVE-2019-10494 was published May 24, 2022
A TOCTOU (time-of-check to time-of-use) vulnerability exists where an attacker may use a... Moderate Unreviewed
CVE-2021-46795 was published Jan 11, 2023
TOCTOU vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022... High Unreviewed
CVE-2022-39908 was published Dec 8, 2022
Quick Heal Total Security before 12.1.1.27 has a TOCTOU race condition that leads to privilege... High Unreviewed
CVE-2022-31466 was published May 24, 2022
A Time of Check Time of Use (TOCTOU) vulnerability was reported in IMController, a software... High Unreviewed
CVE-2021-3969 was published May 19, 2022
In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of... Low Unreviewed
CVE-2020-0003 was published May 24, 2022
Memory corruption in Multimedia Framework due to unsafe access to the data members High Unreviewed
CVE-2022-25716 was published Jan 9, 2023
DMA transactions which are targeted at input buffers used for the StorageSecurityCommandDxe... High Unreviewed
CVE-2022-34325 was published Nov 15, 2022
DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI... High Unreviewed
CVE-2022-33985 was published Nov 15, 2022
A Race Condition Enabling Link Following vulnerability in the cron job shipped with texlive... Low Unreviewed
CVE-2020-8017 was published May 24, 2022
A Race Condition Enabling Link Following vulnerability in the packaging of texlive-filesystem of... Moderate Unreviewed
CVE-2020-8016 was published May 24, 2022
Unauth. Race Condition vulnerability in WP ULike Plugin <= 4.6.4 on WordPress allows attackers to... Low Unreviewed
CVE-2022-45842 was published Nov 30, 2022
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0,... Moderate Unreviewed
CVE-2018-6693 was published May 13, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2022-34899 was published Jul 19, 2022
A possible race condition vulnerability in score driver prior to SMR Jul-2022 Release 1 can allow... Moderate Unreviewed
CVE-2022-33691 was published Jul 13, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2021-34986 was published Jul 16, 2022
The Automox Agent installation package before 37 on macOS allows an unprivileged user to obtain... High Unreviewed
CVE-2022-27904 was published Jul 2, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC... High Unreviewed
CVE-2021-30342 was published Jun 15, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? right after a... High Unreviewed
CVE-2021-30347 was published Jun 15, 2022
Possible hypervisor memory corruption due to TOC TOU race condition when updating address... High Unreviewed
CVE-2021-35090 was published Jun 15, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? right after a... High Unreviewed
CVE-2021-35082 was published Jun 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database