GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
329 advisories
Filter by severity
A unauthenticated Remote Code Execution (RCE) vulnerability is found in the SO Planning online...
High
Unreviewed
CVE-2024-27114
was published
Sep 11, 2024
In the Linux kernel, the following vulnerability has been resolved:
exec: Fix ToCToU between...
High
Unreviewed
CVE-2024-43882
was published
Aug 21, 2024
Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are...
High
Unreviewed
CVE-2024-39425
was published
Aug 14, 2024
Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are...
High
Unreviewed
CVE-2024-39420
was published
Aug 14, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38186
was published
Aug 13, 2024
Windows Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38153
was published
Aug 13, 2024
A TOCTOU (Time-Of-Check-Time-Of-Use) in SMM may allow
an attacker with ring0 privileges and...
High
Unreviewed
CVE-2023-20578
was published
Aug 13, 2024
Time-of-check Time-of-use (TOCTOU) race condition in pg_dump in PostgreSQL allows an object...
High
Unreviewed
CVE-2024-7348
was published
Aug 8, 2024
Apache StreamPipes potentially allows creation of multiple identical accounts
Moderate
CVE-2024-30471
was published
for
org.apache.streampipes:streampipes-parent
(Maven)
Jul 17, 2024
Race condition in the installer for Zoom Workplace App for Windows and Zoom Rooms App for Windows...
Moderate
Unreviewed
CVE-2024-39821
was published
Jul 15, 2024
Path traversal in Team Chat for some Zoom Workplace Apps and SDKs for Windows may allow an...
Moderate
Unreviewed
CVE-2024-39826
was published
Jul 15, 2024
Race condition in the installer for some Zoom Apps and SDKs for Windows before version 6.0.0 may...
High
Unreviewed
CVE-2024-27238
was published
Jul 15, 2024
A vulnerability was discovered in Samsung Mobile Processor Exynos 980, Exynos 990, Exynos 1080,...
Moderate
Unreviewed
CVE-2024-27361
was published
Jul 9, 2024
A race condition could lead to a cross-origin container obtaining permissions of the top-level...
Moderate
Unreviewed
CVE-2024-6601
was published
Jul 9, 2024
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x...
High
Unreviewed
CVE-2024-39936
was published
Jul 4, 2024
OpenSSH 9.5 through 9.7 before 9.8 sometimes allows timing attacks against echo-off password...
High
Unreviewed
CVE-2024-39894
was published
Jul 2, 2024
A potential Time-of-Check to Time-of Use (TOCTOU) vulnerability has been identified in the HP...
High
Unreviewed
CVE-2022-27540
was published
Jun 29, 2024
Dell PowerEdge Server BIOS contains an TOCTOU race condition vulnerability. A local low...
Moderate
Unreviewed
CVE-2024-0171
was published
Jun 25, 2024
CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists that could
cause...
Moderate
Unreviewed
CVE-2024-5558
was published
Jun 12, 2024
Windows Perception Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-35265
was published
Jun 11, 2024
Windows Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-30099
was published
Jun 11, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-30084
was published
Jun 11, 2024
Windows Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-30088
was published
Jun 11, 2024
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service...
High
Unreviewed
CVE-2024-36304
was published
Jun 11, 2024
There is a race condition in the 'replaced executable' detection that, with the correct local...
High
Unreviewed
CVE-2021-3899
was published
Jun 3, 2024
ProTip!
Advisories are also available from the
GraphQL API