GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
329 advisories
Filter by severity
Unauth. Race Condition vulnerability in WP ULike Plugin <= 4.6.4 on WordPress allows attackers to...
Low
Unreviewed
CVE-2022-45842
was published
Nov 30, 2022
A Race Condition Enabling Link Following vulnerability in the cron job shipped with texlive...
Low
Unreviewed
CVE-2020-8017
was published
May 24, 2022
A Race Condition Enabling Link Following vulnerability in the packaging of texlive-filesystem of...
Moderate
Unreviewed
CVE-2020-8016
was published
May 24, 2022
DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI...
High
Unreviewed
CVE-2022-33985
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the StorageSecurityCommandDxe...
High
Unreviewed
CVE-2022-34325
was published
Nov 15, 2022
Memory corruption in Multimedia Framework due to unsafe access to the data members
High
Unreviewed
CVE-2022-25716
was published
Jan 9, 2023
In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of...
Low
Unreviewed
CVE-2020-0003
was published
May 24, 2022
A Time of Check Time of Use (TOCTOU) vulnerability was reported in IMController, a software...
High
Unreviewed
CVE-2021-3969
was published
May 19, 2022
Quick Heal Total Security before 12.1.1.27 has a TOCTOU race condition that leads to privilege...
High
Unreviewed
CVE-2022-31466
was published
May 24, 2022
TOCTOU vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022...
High
Unreviewed
CVE-2022-39908
was published
Dec 8, 2022
A TOCTOU (time-of-check to time-of-use) vulnerability exists where an attacker may use a...
Moderate
Unreviewed
CVE-2021-46795
was published
Jan 11, 2023
Race condition between the camera functions due to lack of resource lock which will lead to...
Moderate
Unreviewed
CVE-2019-10494
was published
May 24, 2022
Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport...
Low
Unreviewed
CVE-2020-8833
was published
May 24, 2022
By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security...
High
Unreviewed
CVE-2021-23892
was published
May 24, 2022
DMA attacks on the parameter buffer used by a software SMI handler used by the driver PcdSmmDxe...
Moderate
Unreviewed
CVE-2022-32266
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the NvmExpressLegacy software SMI...
High
Unreviewed
CVE-2022-33983
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the SdHostDriver software SMI...
High
Unreviewed
CVE-2022-33908
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the SmmResourceCheckDxe software...
Moderate
Unreviewed
CVE-2022-32267
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the AhciBusDxe software SMI handler...
High
Unreviewed
CVE-2022-33905
was published
Nov 15, 2022
VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior) and VMware...
Moderate
Unreviewed
CVE-2020-3957
was published
May 24, 2022
Time-of-check time-of-use race condition in the BIOS firmware for some Intel(R) Processors may...
Moderate
Unreviewed
CVE-2022-21198
was published
Nov 11, 2022
DMA attacks on the parameter buffer used by the VariableRuntimeDxe software SMI handler could...
Moderate
Unreviewed
CVE-2022-33986
was published
Nov 15, 2022
DMA attacks on the parameter buffer used by the IhisiSmm driver could change the contents after...
Moderate
Unreviewed
CVE-2022-30773
was published
Nov 15, 2022
Memory corruption in display due to time-of-check time-of-use race condition during map or unmap...
High
Unreviewed
CVE-2022-25696
was published
Sep 17, 2022
Memory corruption or temporary denial of service due to improper handling of concurrent...
High
Unreviewed
CVE-2022-22093
was published
Sep 17, 2022
ProTip!
Advisories are also available from the
GraphQL API