GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
180 advisories
Filter by severity
A memory corruption issue was addressed with improved memory handling. This issue is fixed in...
High
Unreviewed
CVE-2020-9921
was published
May 24, 2022
A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. Virtio ring descriptors,...
High
Unreviewed
CVE-2020-14375
was published
May 24, 2022
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly...
High
Unreviewed
CVE-2020-1337
was published
May 24, 2022
Prior to 0.1, all builds of Eclipse OMR contain a bug where the loop versioner may fail to...
High
Unreviewed
CVE-2019-11774
was published
May 24, 2022
Apport before versions 2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu7.7, 2.20.10...
High
Unreviewed
CVE-2019-7307
was published
May 24, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle...
High
Unreviewed
CVE-2019-1065
was published
May 24, 2022
Quick Heal Total Security before 12.1.1.27 has a TOCTOU race condition that leads to privilege...
High
Unreviewed
CVE-2022-31466
was published
May 24, 2022
A Time of Check Time of Use (TOCTOU) vulnerability was reported in IMController, a software...
High
Unreviewed
CVE-2021-3969
was published
May 19, 2022
An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced...
High
Unreviewed
CVE-2018-8584
was published
May 13, 2022
An ability to process crash dumps under root privileges and inappropriate symlinks handling could...
High
Unreviewed
CVE-2017-15404
was published
May 13, 2022
A remote code execution vulnerability in the Android media framework (libstagefright). Product:...
High
Unreviewed
CVE-2017-0756
was published
May 13, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious...
High
Unreviewed
CVE-2017-0412
was published
May 13, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious...
High
Unreviewed
CVE-2017-0411
was published
May 13, 2022
An elevation of privilege vulnerability in the NVIDIA video driver could enable a local malicious...
High
Unreviewed
CVE-2017-0331
was published
May 13, 2022
A Time-of-check Time-of-use (TOCTOU) Race Condition exists in ZoneMinder through 1.32.3 as a...
High
Unreviewed
CVE-2019-7347
was published
May 13, 2022
VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before ESXi600...
High
Unreviewed
CVE-2019-5519
was published
May 13, 2022
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV...
High
Unreviewed
CVE-2019-0836
was published
May 13, 2022
dxgkrnl.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2...
High
Unreviewed
CVE-2013-3888
was published
May 13, 2022
Race condition issues were found in Calibre at devices/linux_mount_helper.c allowing unprivileged...
High
Unreviewed
CVE-2011-4126
was published
Apr 22, 2022
Time-of-check Time-of-use (TOCTOU) Race Condition vulerability in Foscam R2C IP camera running...
High
Unreviewed
CVE-2022-28743
was published
Apr 22, 2022
There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for...
High
Unreviewed
CVE-2022-0915
was published
Apr 13, 2022
JetBrains TeamCity before 2021.2 was vulnerable to a Time-of-check/Time-of-use (TOCTOU) race...
High
Unreviewed
CVE-2022-24335
was published
Feb 26, 2022
VMware ESXi contains a TOCTOU (Time-of-check Time-of-use) vulnerability that exists in the way...
High
Unreviewed
CVE-2021-22043
was published
Feb 17, 2022
Insecure temporary file in Tensorflow
High
CVE-2022-23563
was published
for
tensorflow
(pip)
Feb 9, 2022
ProTip!
Advisories are also available from the
GraphQL API