Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,286
Erlang
31
GitHub Actions
21
Go
2,058
Maven
5,000+
npm
3,742
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

329 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: drm: Fix use-after-free read... High Unreviewed
CVE-2021-47280 was published May 21, 2024
A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus... High Unreviewed
CVE-2024-3292 was published May 17, 2024
A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus... High Unreviewed
CVE-2024-3290 was published May 17, 2024
Time-of-check Time-of-use race condition in Intel(R) Neural Compressor software before version 2... Moderate Unreviewed
CVE-2024-21792 was published May 16, 2024
A local attacker with low... High Unreviewed
CVE-2024-28137 was published May 14, 2024
An issue was discovered in Alcatel-Lucent ALE NOE deskphones through 86x8_NOE-R300.1.40.12.4180... High Unreviewed
CVE-2024-29149 was published May 7, 2024
A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically... Moderate Unreviewed
CVE-2024-2913 was published May 7, 2024
Memory corruption while loading a VM from a signed VM image that is not coherent in the processor... High Unreviewed
CVE-2023-33119 was published May 6, 2024
WordOps has TOCTOU race condition Moderate
CVE-2024-34528 was published for wordops (pip) May 6, 2024
VirtuBox
Tesla Model 3 Gateway Firmware Signature Validation Bypass Vulnerability. This vulnerability... Critical Unreviewed
CVE-2023-32156 was published May 3, 2024
Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2023-27327 was published May 3, 2024
Parallels Desktop Updater Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2023-27323 was published May 3, 2024
In the Linux kernel, the following vulnerability has been resolved: crypto: qat - resolve race... High Unreviewed
CVE-2024-26974 was published May 1, 2024
Anti-tampering protection of the Zscaler Client Connector can be bypassed under certain... High Unreviewed
CVE-2024-23463 was published Apr 30, 2024
In deletefiles in FDUPES before 2.2.0, a TOCTOU race condition allows arbitrary file deletion via... Moderate Unreviewed
CVE-2022-48682 was published Apr 26, 2024
OpenStack Storlets arbitrary code execution vulnerability High
CVE-2024-28717 was published for storlets (pip) Apr 22, 2024
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on... Moderate Unreviewed
CVE-2024-2440 was published Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24995 was published Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24993 was published Apr 19, 2024
OpenStack magnum vulnerable to time-of-check to time-of-use (TOCTOU) attack Moderate
CVE-2024-28718 was published for magnum (pip) Apr 12, 2024
Secure Boot Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-29062 was published Apr 9, 2024
Windows Distributed File System (DFS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-29066 was published Apr 9, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-26218 was published Apr 9, 2024
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in openEuler iSulad on Linux... High Unreviewed
CVE-2021-33632 was published Mar 25, 2024
Race condition in BIOS firmware for some Intel(R) Processors may allow a privileged user to... High Unreviewed
CVE-2023-32282 was published Mar 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database