Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

180 advisories

Loading
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31636 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31639 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31638 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31637 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31635 was published Jun 13, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-43778 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-27541 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-43777 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-27539 was published Jun 12, 2023
Videostream macOS app 0.5.0 and 0.4.3 has a Race Condition. The Updater privileged script... High Unreviewed
CVE-2023-25394 was published May 17, 2023
A TOCTOU in ASP bootloader may allow an attacker to tamper with the SPI ROM following data read... High Unreviewed
CVE-2021-26356 was published May 9, 2023
The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of... High Unreviewed
CVE-2023-2007 was published Apr 25, 2023
This vulnerability allows remote attackers to bypass authentication on affected installations of... High Unreviewed
CVE-2022-36980 was published Mar 29, 2023
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection... High Unreviewed
CVE-2022-33257 was published Mar 10, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the... High Unreviewed
CVE-2022-32477 was published Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the... High Unreviewed
CVE-2022-32469 was published Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the... High Unreviewed
CVE-2022-32475 was published Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.1 through 5.5. DMA attacks on the... High Unreviewed
CVE-2022-32954 was published Feb 15, 2023
An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. The IhisiDxe... High Unreviewed
CVE-2022-32471 was published Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the... High Unreviewed
CVE-2022-32478 was published Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the... High Unreviewed
CVE-2022-32474 was published Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the... High Unreviewed
CVE-2022-32955 was published Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the... High Unreviewed
CVE-2022-32470 was published Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the... High Unreviewed
CVE-2022-32953 was published Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the... High Unreviewed
CVE-2022-32476 was published Feb 15, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database