Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

322 advisories

Loading
In adsp, there is a possible escalation of privilege due to a logic error. This could lead to... Moderate Unreviewed
CVE-2023-20620 was published Mar 7, 2023
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection... High Unreviewed
CVE-2022-33257 was published Mar 10, 2023
Podman Time-of-check Time-of-use (TOCTOU) Race Condition Moderate
CVE-2023-0778 was published for github.com/containers/podman/v4 (Go) Mar 27, 2023
This vulnerability allows physical attackers to execute arbitrary code on affected Tesla vehicles... Moderate Unreviewed
CVE-2022-3093 was published Mar 29, 2023
This vulnerability allows remote attackers to bypass authentication on affected installations of... High Unreviewed
CVE-2022-36980 was published Mar 29, 2023
A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows... Moderate Unreviewed
CVE-2023-0006 was published Apr 12, 2023
Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC... Moderate Unreviewed
CVE-2022-33270 was published Apr 13, 2023
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) ... Moderate Unreviewed
CVE-2023-1585 was published Apr 19, 2023
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) ... Moderate Unreviewed
CVE-2023-1586 was published Apr 19, 2023
The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of... High Unreviewed
CVE-2023-2007 was published Apr 25, 2023
Docker Desktop for Windows before 4.6 allows attackers to overwrite any file through the... Moderate Unreviewed
CVE-2022-38730 was published Apr 27, 2023
A TOCTOU in ASP bootloader may allow an attacker to tamper with the SPI ROM following data read... High Unreviewed
CVE-2021-26356 was published May 9, 2023
Time-of-check Time-of-use (TOCTOU) in the BIOS2PSP command may allow an attacker with a malicious... Moderate Unreviewed
CVE-2021-46792 was published May 9, 2023
Videostream macOS app 0.5.0 and 0.4.3 has a Race Condition. The Updater privileged script... High Unreviewed
CVE-2023-25394 was published May 17, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-43777 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-27541 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-27539 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-43778 was published Jun 12, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31636 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31635 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31639 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31638 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31637 was published Jun 13, 2023
NuGet Client Remote Code Execution Vulnerability High
CVE-2023-29337 was published for Microsoft.Build.NuGetSdkResolver (NuGet) Jun 14, 2023
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products,... High Unreviewed
CVE-2022-31640 was published Jun 14, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database