GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
289 advisories
Filter by severity
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on...
Moderate
Unreviewed
CVE-2024-2440
was published
Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows...
High
Unreviewed
CVE-2024-24993
was published
Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows...
High
Unreviewed
CVE-2024-24995
was published
Apr 19, 2024
Secure Boot Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-29062
was published
Apr 9, 2024
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-29066
was published
Apr 9, 2024
Windows Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-26218
was published
Apr 9, 2024
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in openEuler iSulad on Linux...
High
Unreviewed
CVE-2021-33632
was published
Mar 25, 2024
Race condition in BIOS firmware for some Intel(R) Processors may allow a privileged user to...
High
Unreviewed
CVE-2023-32282
was published
Mar 14, 2024
Race condition in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow...
Moderate
Unreviewed
CVE-2024-24692
was published
Mar 13, 2024
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain a TOCTOU race condition...
Moderate
Unreviewed
CVE-2024-0163
was published
Mar 13, 2024
Windows Print Spooler Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21433
was published
Mar 12, 2024
In OpenBSD 7.4 before errata 009, a race condition between pf(4)'s processing of packets and...
Moderate
Unreviewed
CVE-2023-52556
was published
Mar 1, 2024
The total size of the user-provided nmreq to nmreq_copyin() was first computed and then trusted...
High
Unreviewed
CVE-2022-23084
was published
Feb 15, 2024
Windows Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21371
was published
Feb 13, 2024
Windows Kernel Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-21362
was published
Feb 13, 2024
Memory corruption in Trusted Execution Environment while deinitializing an object used for...
High
Unreviewed
CVE-2023-33046
was published
Feb 6, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.1, watchOS...
High
Unreviewed
CVE-2022-48618
was published
Jan 9, 2024
A race condition in GitHub Enterprise Server allows an outside collaborator to be added while a...
Moderate
Unreviewed
CVE-2023-6803
was published
Dec 21, 2023
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on...
Low
Unreviewed
CVE-2023-6690
was published
Dec 21, 2023
A race condition in GitHub Enterprise Server was identified that could allow an attacker...
Moderate
Unreviewed
CVE-2023-46649
was published
Dec 21, 2023
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Ricard Torres Thumbs Rating...
Moderate
Unreviewed
CVE-2022-45809
was published
Dec 19, 2023
TOCTOU race-condition vulnerability in Insyde InsydeH2O with Kernel 5.2 before version 05.27.29,...
Moderate
Unreviewed
CVE-2022-24351
was published
Dec 16, 2023
A TOCTOU race condition in Samsung Mobile Processor Exynos 9820, Exynos 980, Exynos 1080, Exynos...
Moderate
Unreviewed
CVE-2023-42483
was published
Dec 13, 2023
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in YetAnotherStarsRating.Com YASR...
Low
Unreviewed
CVE-2023-37867
was published
Nov 30, 2023
TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM...
Moderate
Unreviewed
CVE-2023-20521
was published
Nov 14, 2023
ProTip!
Advisories are also available from the
GraphQL API