Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

335 advisories

Loading
A TOCTOU vulnerability exists in madCodeHook before 2020-07-16 that allows local attackers to... High Unreviewed
CVE-2020-14418 was published May 24, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2021-31422 was published May 24, 2022
Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a Time-of-check Time-of-use (TOCTOU) race... High Unreviewed
CVE-2021-21539 was published May 24, 2022
Potential arbitrary memory corruption when the qseecom driver updates ion physical addresses in... Moderate Unreviewed
CVE-2020-11230 was published May 24, 2022
Time-of-check time-of-use race condition While processing partition entries due to newly created... High Unreviewed
CVE-2020-11233 was published May 24, 2022
While waiting for a response to a callback or listener request, non-secure clients can change... High Unreviewed
CVE-2020-11298 was published May 24, 2022
Race condition in Apache Tomcat High
CVE-2022-23181 was published for org.apache.tomcat:tomcat (Maven) Feb 1, 2022
There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Huawei Smartphone.... High Unreviewed
CVE-2021-22369 was published May 24, 2022
When user-defined ARP Policer is configured and applied on one or more Aggregated Ethernet (AE)... Moderate Unreviewed
CVE-2021-0289 was published May 24, 2022
A time-of-check to time-of-use (TOCTOU) race condition vulnerability in the Palo Alto Networks... High Unreviewed
CVE-2021-3054 was published May 24, 2022
All versions of the Zoom Plugin for Microsoft Outlook for MacOS before 5.3.52553.0918 contain a... High Unreviewed
CVE-2021-34413 was published May 24, 2022
A vulnerability in the shared library loading mechanism of Cisco AnyConnect Secure Mobility... High Unreviewed
CVE-2021-34788 was published May 24, 2022
Possible memory corruption due to Improper handling of hypervisor unmap operations for concurrent... High Unreviewed
CVE-2021-1921 was published May 24, 2022
Time-of-check time-of-use vulnerability in the Crypto API Toolkit for Intel(R) SGX may allow a... Moderate Unreviewed
CVE-2021-33097 was published May 24, 2022
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2022-44651 was published Dec 12, 2022
When installing an add-on, Firefox verified the signature before prompting the user; but while... High Unreviewed
CVE-2022-26387 was published Dec 22, 2022
In jpeg, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32608 was published Nov 9, 2022
An Arm product family through 2022-06-29 has a TOCTOU Race Condition that allows non-privileged... High Unreviewed
CVE-2022-34830 was published Nov 23, 2022
Dell BIOS contains a race condition vulnerability. A local attacker could exploit this... High Unreviewed
CVE-2022-26859 was published Sep 7, 2022
A TOCTOU race condition in SMU may allow for the caller to obtain and manipulate the address of a... Moderate Unreviewed
CVE-2021-26350 was published May 12, 2022
A time-of-check-time-of-use (TOCTOU) race condition vulnerability was found in networkd... Moderate Unreviewed
CVE-2022-29800 was published Sep 22, 2022
Insufficient Session Expiration and TOCTOU Race Condition in OPC FOundation UA .Net Standard Moderate
CVE-2020-8867 was published for OPCFoundation.NetStandard.Opc.Ua (NuGet) Aug 2, 2021
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV... High Unreviewed
CVE-2019-0836 was published May 13, 2022
An Allocation of Resources Without Limits or Throttling weakness in the memory management of the... Moderate Unreviewed
CVE-2023-22397 was published Jan 13, 2023
An issue was discovered in Plex Media Server through 1.24.4.5081-e362dc1ee. An attacker (with a... High Unreviewed
CVE-2021-42835 was published Dec 9, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database