Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

56 advisories

Loading
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or... High Unreviewed
CVE-2022-2962 was published Sep 14, 2022
Incorrect Synchronization in GitHub repository polonel/trudesk prior to 1.2.3. High Unreviewed
CVE-2022-1931 was published Jun 1, 2022
Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions... High Unreviewed
CVE-2021-20592 was published May 24, 2022
In the standard library in Rust before 1.29.0, there is weak synchronization in the Arc::get_mut... Moderate Unreviewed
CVE-2018-25008 was published May 24, 2022
An improper synchronization logic in Samsung Email prior to version 6.1.41.0 can leak messages in... Moderate Unreviewed
CVE-2021-25376 was published May 24, 2022
The login verification can be bypassed by using the problem that the time is not synchronized... High Unreviewed
CVE-2020-14098 was published May 24, 2022
A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an... Moderate Unreviewed
CVE-2020-3471 was published May 24, 2022
An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers... Moderate Unreviewed
CVE-2020-12769 was published May 24, 2022
In FreeRADIUS 3.0.x before 3.0.20, the EAP-pwd module used a global OpenSSL BN_CTX instance to... Moderate Unreviewed
CVE-2019-17185 was published May 24, 2022
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of... Moderate Unreviewed
CVE-2019-17344 was published May 24, 2022
An exploitable denial-of-service vulnerability exists in the XML_UploadFile Wi-Fi command of the... High Unreviewed
CVE-2018-4027 was published May 24, 2022
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface... High Unreviewed
CVE-2016-8368 was published May 13, 2022
Improper Synchronization in Jenkins Convertigo Mobile Platform Plugin Low
CVE-2022-25210 was published for com.convertigo.jenkins.plugins:convertigo-mobile-platform (Maven) Feb 16, 2022
NotMyFault
Improper locking in the Power Management Controller (PMC) for some Intel Chipset firmware before... Moderate Unreviewed
CVE-2021-0147 was published Feb 11, 2022
Deadlock in mutually recursive `tf.function` objects Moderate
CVE-2021-41213 was published for tensorflow (pip) Nov 10, 2021
Improper Synchronization and Race Condition in vm-memory High
CVE-2020-13759 was published for vm-memory (Rust) Aug 25, 2021
Data race in va-ts Moderate
CVE-2020-36220 was published for va-ts (Rust) Aug 25, 2021
Data races in multiqueue2 Moderate
CVE-2020-36214 was published for multiqueue2 (Rust) Aug 25, 2021
Data races in hashconsing High
CVE-2020-36215 was published for hashconsing (Rust) Aug 25, 2021
Data race in eventio Moderate
CVE-2020-36216 was published for eventio (Rust) Aug 25, 2021
Data race in may_queue Moderate
CVE-2020-36217 was published for may_queue (Rust) Aug 25, 2021
Improper synchronization in buttplug Moderate
CVE-2020-36218 was published for buttplug (Rust) Aug 25, 2021
Data race in atomic-option Moderate
CVE-2020-36219 was published for atomic-option (Rust) Aug 25, 2021
Data races in im Moderate
CVE-2020-36204 was published for im (Rust) Aug 25, 2021
bartschuller tdunlap607
Data races in rusb High
CVE-2020-36206 was published for rusb (Rust) Aug 25, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database