Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

282 advisories

Loading
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products,... High Unreviewed
CVE-2022-31642 was published Jun 14, 2023
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products,... High Unreviewed
CVE-2022-31641 was published Jun 14, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31637 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31638 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31636 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31635 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31639 was published Jun 13, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-43778 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-27539 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-27541 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-43777 was published Jun 12, 2023
Videostream macOS app 0.5.0 and 0.4.3 has a Race Condition. The Updater privileged script... High Unreviewed
CVE-2023-25394 was published May 17, 2023
Time-of-check Time-of-use (TOCTOU) in the BIOS2PSP command may allow an attacker with a malicious... Moderate Unreviewed
CVE-2021-46792 was published May 9, 2023
A TOCTOU in ASP bootloader may allow an attacker to tamper with the SPI ROM following data read... High Unreviewed
CVE-2021-26356 was published May 9, 2023
Docker Desktop for Windows before 4.6 allows attackers to overwrite any file through the... Moderate Unreviewed
CVE-2022-38730 was published Apr 27, 2023
The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of... High Unreviewed
CVE-2023-2007 was published Apr 25, 2023
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) ... Moderate Unreviewed
CVE-2023-1586 was published Apr 19, 2023
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) ... Moderate Unreviewed
CVE-2023-1585 was published Apr 19, 2023
Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC... Moderate Unreviewed
CVE-2022-33270 was published Apr 13, 2023
A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows... Moderate Unreviewed
CVE-2023-0006 was published Apr 12, 2023
This vulnerability allows remote attackers to bypass authentication on affected installations of... High Unreviewed
CVE-2022-36980 was published Mar 29, 2023
This vulnerability allows physical attackers to execute arbitrary code on affected Tesla vehicles... Moderate Unreviewed
CVE-2022-3093 was published Mar 29, 2023
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection... High Unreviewed
CVE-2022-33257 was published Mar 10, 2023
In ion, there is a possible escalation of privilege due to improper locking. This could lead to... Moderate Unreviewed
CVE-2023-20623 was published Mar 7, 2023
In adsp, there is a possible escalation of privilege due to a logic error. This could lead to... Moderate Unreviewed
CVE-2023-20620 was published Mar 7, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database