GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,901
Maven
5,000+
npm
3,631
NuGet
638
pip
3,244
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
296 advisories
Filter by severity
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS...
High
Unreviewed
CVE-2022-31639
was published
Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS...
High
Unreviewed
CVE-2022-31635
was published
Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS...
High
Unreviewed
CVE-2022-31638
was published
Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS...
High
Unreviewed
CVE-2022-31637
was published
Jun 13, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP...
High
Unreviewed
CVE-2022-43778
was published
Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP...
High
Unreviewed
CVE-2022-27539
was published
Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP...
High
Unreviewed
CVE-2022-27541
was published
Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP...
High
Unreviewed
CVE-2022-43777
was published
Jun 12, 2023
Videostream macOS app 0.5.0 and 0.4.3 has a Race Condition. The Updater privileged script...
High
Unreviewed
CVE-2023-25394
was published
May 17, 2023
Time-of-check Time-of-use (TOCTOU) in the
BIOS2PSP command may allow an attacker with a malicious...
Moderate
Unreviewed
CVE-2021-46792
was published
May 9, 2023
A TOCTOU in ASP bootloader may allow an attacker
to tamper with the SPI ROM following data read...
High
Unreviewed
CVE-2021-26356
was published
May 9, 2023
Docker Desktop for Windows before 4.6 allows attackers to overwrite any file through the...
Moderate
Unreviewed
CVE-2022-38730
was published
Apr 27, 2023
The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of...
High
Unreviewed
CVE-2023-2007
was published
Apr 25, 2023
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) ...
Moderate
Unreviewed
CVE-2023-1586
was published
Apr 19, 2023
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) ...
Moderate
Unreviewed
CVE-2023-1585
was published
Apr 19, 2023
Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC...
Moderate
Unreviewed
CVE-2022-33270
was published
Apr 13, 2023
A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows...
Moderate
Unreviewed
CVE-2023-0006
was published
Apr 12, 2023
This vulnerability allows remote attackers to bypass authentication on affected installations of...
High
Unreviewed
CVE-2022-36980
was published
Mar 29, 2023
This vulnerability allows physical attackers to execute arbitrary code on affected Tesla vehicles...
Moderate
Unreviewed
CVE-2022-3093
was published
Mar 29, 2023
Podman Time-of-check Time-of-use (TOCTOU) Race Condition
Moderate
CVE-2023-0778
was published
for
github.com/containers/podman/v4
(Go)
Mar 27, 2023
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection...
High
Unreviewed
CVE-2022-33257
was published
Mar 10, 2023
In ion, there is a possible escalation of privilege due to improper locking. This could lead to...
Moderate
Unreviewed
CVE-2023-20623
was published
Mar 7, 2023
In adsp, there is a possible escalation of privilege due to a logic error. This could lead to...
Moderate
Unreviewed
CVE-2023-20620
was published
Mar 7, 2023
A race condition was addressed with additional validation. This issue is fixed in macOS Ventura...
Moderate
Unreviewed
CVE-2023-23520
was published
Feb 27, 2023
Race Condition Enabling Link Following and Time-of-check Time-of-use (TOCTOU) Race Condition in remove_dir_all
Low
GHSA-mc8h-8q98-g5hr
was published
for
remove_dir_all
(Rust)
Feb 24, 2023
ProTip!
Advisories are also available from the
GraphQL API