GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
184 advisories
Filter by severity
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32955
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32953
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32476
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32473
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32470
was published
Feb 15, 2023
A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in certain HP...
High
Unreviewed
CVE-2022-43779
was published
Feb 12, 2023
A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in the BIOS...
High
Unreviewed
CVE-2022-27538
was published
Feb 1, 2023
Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious...
High
Unreviewed
CVE-2022-34398
was published
Feb 1, 2023
A vulnerability exists in Trend Micro Maximum Security 2022 (17.7) wherein a low-privileged user...
High
Unreviewed
CVE-2022-48191
was published
Jan 20, 2023
Memory corruption in Multimedia Framework due to unsafe access to the data members
High
Unreviewed
CVE-2022-25716
was published
Jan 9, 2023
A Time-of-Check Time-of-Use bug existed in the Maintenance (Updater) Service that could be abused...
High
Unreviewed
CVE-2022-22753
was published
Dec 22, 2022
When installing an add-on, Firefox verified the signature before prompting the user; but while...
High
Unreviewed
CVE-2022-26387
was published
Dec 22, 2022
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID...
High
Unreviewed
CVE-2022-44670
was published
Dec 13, 2022
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service...
High
Unreviewed
CVE-2022-44651
was published
Dec 12, 2022
TOCTOU vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022...
High
Unreviewed
CVE-2022-39908
was published
Dec 8, 2022
An Arm product family through 2022-06-29 has a TOCTOU Race Condition that allows non-privileged...
High
Unreviewed
CVE-2022-34830
was published
Nov 23, 2022
In UsbCoreDxe, tampering with the contents of the USB working buffer using DMA while certain USB...
High
Unreviewed
CVE-2022-30283
was published
Nov 16, 2022
DMA transactions which are targeted at input buffers used for the StorageSecurityCommandDxe...
High
Unreviewed
CVE-2022-34325
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI...
High
Unreviewed
CVE-2022-33985
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the NvmExpressLegacy software SMI...
High
Unreviewed
CVE-2022-33983
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the SdHostDriver software SMI...
High
Unreviewed
CVE-2022-33908
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the HddPassword software SMI...
High
Unreviewed
CVE-2022-33909
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the AhciBusDxe software SMI handler...
High
Unreviewed
CVE-2022-33905
was published
Nov 15, 2022
DMA transactions which are targeted at input buffers used for the SdMmcDevice software SMI...
High
Unreviewed
CVE-2022-33984
was published
Nov 15, 2022
Memory corruption in display due to time-of-check time-of-use of metadata reserved size in...
High
Unreviewed
CVE-2022-33214
was published
Oct 19, 2022
ProTip!
Advisories are also available from the
GraphQL API