Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,014
Maven
5,000+
npm
3,721
NuGet
662
pip
3,393
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

179 advisories

Loading
A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. Virtio ring descriptors,... High Unreviewed
CVE-2020-14375 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly... High Unreviewed
CVE-2020-1337 was published May 24, 2022
Prior to 0.1, all builds of Eclipse OMR contain a bug where the loop versioner may fail to... High Unreviewed
CVE-2019-11774 was published May 24, 2022
Apport before versions 2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu7.7, 2.20.10... High Unreviewed
CVE-2019-7307 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2019-1065 was published May 24, 2022
Quick Heal Total Security before 12.1.1.27 has a TOCTOU race condition that leads to privilege... High Unreviewed
CVE-2022-31466 was published May 24, 2022
A Time of Check Time of Use (TOCTOU) vulnerability was reported in IMController, a software... High Unreviewed
CVE-2021-3969 was published May 19, 2022
An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced... High Unreviewed
CVE-2018-8584 was published May 13, 2022
An ability to process crash dumps under root privileges and inappropriate symlinks handling could... High Unreviewed
CVE-2017-15404 was published May 13, 2022
A remote code execution vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0756 was published May 13, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious... High Unreviewed
CVE-2017-0412 was published May 13, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious... High Unreviewed
CVE-2017-0411 was published May 13, 2022
An elevation of privilege vulnerability in the NVIDIA video driver could enable a local malicious... High Unreviewed
CVE-2017-0331 was published May 13, 2022
A Time-of-check Time-of-use (TOCTOU) Race Condition exists in ZoneMinder through 1.32.3 as a... High Unreviewed
CVE-2019-7347 was published May 13, 2022
VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before ESXi600... High Unreviewed
CVE-2019-5519 was published May 13, 2022
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV... High Unreviewed
CVE-2019-0836 was published May 13, 2022
dxgkrnl.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2... High Unreviewed
CVE-2013-3888 was published May 13, 2022
Race Condition in Grunt High
CVE-2022-1537 was published for grunt (npm) May 11, 2022
Race condition issues were found in Calibre at devices/linux_mount_helper.c allowing unprivileged... High Unreviewed
CVE-2011-4126 was published Apr 22, 2022
Time-of-check Time-of-use (TOCTOU) Race Condition vulerability in Foscam R2C IP camera running... High Unreviewed
CVE-2022-28743 was published Apr 22, 2022
There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for... High Unreviewed
CVE-2022-0915 was published Apr 13, 2022
JetBrains TeamCity before 2021.2 was vulnerable to a Time-of-check/Time-of-use (TOCTOU) race... High Unreviewed
CVE-2022-24335 was published Feb 26, 2022
VMware ESXi contains a TOCTOU (Time-of-check Time-of-use) vulnerability that exists in the way... High Unreviewed
CVE-2021-22043 was published Feb 17, 2022
Insecure temporary file in Tensorflow High
CVE-2022-23563 was published for tensorflow (pip) Feb 9, 2022
Race condition in Apache Tomcat High
CVE-2022-23181 was published for org.apache.tomcat:tomcat (Maven) Feb 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database