Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

316 advisories

Loading
Memory safety violation in crayon High
CVE-2020-35889 was published for crayon (Rust) Aug 25, 2021
Miner fails to get block template when a cell used as a cell dep has been destroyed. High
GHSA-v666-6w97-pcwm was published for ckb (Rust) Aug 25, 2021
etcd vulnerable to TOCTOU of gateway endpoint authentication Low
GHSA-h8g9-6gvh-5mrc was published for go.etcd.io/etcd/v3 (Go) Oct 6, 2022
devise Time-of-check Time-of-use Race Condition vulnerability Moderate
CVE-2019-5421 was published for devise (RubyGems) Mar 19, 2019
A race condition vulnerability exists in the QuickClean feature of McAfee Total Protection for... Moderate Unreviewed
CVE-2022-0280 was published Mar 12, 2022
Dell PowerScale OneFS, versions 8.2.2-9.3.x, contain a time-of-check-to-time-of-use vulnerability... Low Unreviewed
CVE-2022-24413 was published Apr 13, 2022
There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for... High Unreviewed
CVE-2022-0915 was published Apr 13, 2022
An issue was discovered in Amazon AWS VPN Client 2.0.0. A TOCTOU race condition exists during the... Moderate Unreviewed
CVE-2022-25165 was published Apr 15, 2022
Time-of-check Time-of-use (TOCTOU) Race Condition vulerability in Foscam R2C IP camera running... High Unreviewed
CVE-2022-28743 was published Apr 22, 2022
Race condition issues were found in Calibre at devices/linux_mount_helper.c allowing unprivileged... High Unreviewed
CVE-2011-4126 was published Apr 22, 2022
CISOfy Lynis before 3.0.0 has Incorrect Access Control because of a TOCTOU race condition. The... Low Unreviewed
CVE-2020-13882 was published May 24, 2022
In FreeBSD 12.1-STABLE before r363918, 12.1-RELEASE before p8, 11.4-STABLE before r363919, 11.4... Moderate Unreviewed
CVE-2020-7460 was published May 24, 2022
A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and... Moderate Unreviewed
CVE-2021-4001 was published Jan 22, 2022
TOCTOU (time-of-check to time-of-use) issue in the System Management Unit (SMU) may result in a... Moderate Unreviewed
CVE-2021-26347 was published May 12, 2022
A vulnerability in the DLL loading mechanism of Cisco AnyConnect Secure Mobility Client for... Moderate Unreviewed
CVE-2021-1567 was published May 24, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC... High Unreviewed
CVE-2021-30343 was published Jun 15, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? right after a... High Unreviewed
CVE-2021-35082 was published Jun 15, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC... High Unreviewed
CVE-2021-30342 was published Jun 15, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? right after a... High Unreviewed
CVE-2021-30347 was published Jun 15, 2022
Possible hypervisor memory corruption due to TOC TOU race condition when updating address... High Unreviewed
CVE-2021-35090 was published Jun 15, 2022
The Automox Agent installation package before 37 on macOS allows an unprivileged user to obtain... High Unreviewed
CVE-2022-27904 was published Jul 2, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2021-34986 was published Jul 16, 2022
A possible race condition vulnerability in score driver prior to SMR Jul-2022 Release 1 can allow... Moderate Unreviewed
CVE-2022-33691 was published Jul 13, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2022-34899 was published Jul 19, 2022
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0,... Moderate Unreviewed
CVE-2018-6693 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database