GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,901
Maven
5,000+
npm
3,631
NuGet
638
pip
3,244
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
296 advisories
Filter by severity
An issue was discovered in Alcatel-Lucent ALE NOE deskphones through 86x8_NOE-R300.1.40.12.4180...
High
Unreviewed
CVE-2024-29149
was published
May 7, 2024
A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically...
Moderate
Unreviewed
CVE-2024-2913
was published
May 7, 2024
Memory corruption while loading a VM from a signed VM image that is not coherent in the processor...
High
Unreviewed
CVE-2023-33119
was published
May 6, 2024
Tesla Model 3 Gateway Firmware Signature Validation Bypass Vulnerability. This vulnerability...
Critical
Unreviewed
CVE-2023-32156
was published
May 3, 2024
Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability....
High
Unreviewed
CVE-2023-27327
was published
May 3, 2024
Parallels Desktop Updater Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability....
High
Unreviewed
CVE-2023-27323
was published
May 3, 2024
Anti-tampering protection of the Zscaler Client Connector can be bypassed under certain...
High
Unreviewed
CVE-2024-23463
was published
Apr 30, 2024
OpenStack Storlets arbitrary code execution vulnerability
High
CVE-2024-28717
was published
for
storlets
(pip)
Apr 22, 2024
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on...
Moderate
Unreviewed
CVE-2024-2440
was published
Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows...
High
Unreviewed
CVE-2024-24993
was published
Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows...
High
Unreviewed
CVE-2024-24995
was published
Apr 19, 2024
OpenStack magnum vulnerable to time-of-check to time-of-use (TOCTOU) attack
Moderate
CVE-2024-28718
was published
for
magnum
(pip)
Apr 12, 2024
Secure Boot Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-29062
was published
Apr 9, 2024
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-29066
was published
Apr 9, 2024
Windows Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-26218
was published
Apr 9, 2024
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in openEuler iSulad on Linux...
High
Unreviewed
CVE-2021-33632
was published
Mar 25, 2024
Race condition in BIOS firmware for some Intel(R) Processors may allow a privileged user to...
High
Unreviewed
CVE-2023-32282
was published
Mar 14, 2024
Race condition in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow...
Moderate
Unreviewed
CVE-2024-24692
was published
Mar 13, 2024
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain a TOCTOU race condition...
Moderate
Unreviewed
CVE-2024-0163
was published
Mar 13, 2024
Windows Print Spooler Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21433
was published
Mar 12, 2024
In OpenBSD 7.4 before errata 009, a race condition between pf(4)'s processing of packets and...
Unknown
Unreviewed
CVE-2023-52556
was published
Mar 1, 2024
Gradio apps vulnerable to timing attacks to guess password
Moderate
CVE-2024-1729
was published
for
gradio
(pip)
Feb 22, 2024
The total size of the user-provided nmreq to nmreq_copyin() was first computed and then trusted...
High
Unreviewed
CVE-2022-23084
was published
Feb 15, 2024
Windows Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21371
was published
Feb 13, 2024
ProTip!
Advisories are also available from the
GraphQL API