GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
36 advisories
Filter by severity
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS)...
High
Unreviewed
CVE-2024-7409
was published
Aug 5, 2024
An information disclosure issue has been discovered in GitLab EE affecting all versions starting...
Moderate
Unreviewed
CVE-2024-4278
was published
Sep 26, 2024
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2023-28229
was published
Apr 11, 2023
A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset...
Moderate
Unreviewed
CVE-2023-5088
was published
Nov 3, 2023
In the Linux kernel, the following vulnerability has been resolved:
tracing: Restructure...
Moderate
Unreviewed
CVE-2021-46939
was published
Feb 27, 2024
In the standard library in Rust before 1.29.0, there is weak synchronization in the Arc::get_mut...
Moderate
Unreviewed
CVE-2018-25008
was published
May 24, 2022
An issue exists in SoftIron HyperCloud where drive caddy removal and reinsertion without a reboot...
High
Unreviewed
CVE-2023-45084
was published
Dec 5, 2023
Improper locking in the Power Management Controller (PMC) for some Intel Chipset firmware before...
Moderate
Unreviewed
CVE-2021-0147
was published
Feb 11, 2022
A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by...
High
Unreviewed
CVE-2022-3565
was published
Oct 18, 2022
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or...
High
Unreviewed
CVE-2022-2962
was published
Sep 14, 2022
In adsp, there is a possible double free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20625
was published
Mar 7, 2023
In gpu, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20611
was published
Feb 6, 2023
In ccu, there is a possible memory corruption due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20607
was published
Feb 6, 2023
In display drm, there is a possible memory corruption due to a race condition. This could lead to...
Moderate
Unreviewed
CVE-2023-20610
was published
Feb 6, 2023
In ccd, there is a possible memory corruption due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32642
was published
Feb 6, 2023
In ccd, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32643
was published
Feb 6, 2023
Western Digital has identified a weakness in the UFS standard that could result in a security...
High
Unreviewed
CVE-2022-23005
was published
Jan 24, 2023
In isp, there is a possible use after free due to improper locking. This could lead to local...
Moderate
Unreviewed
CVE-2022-26452
was published
Oct 8, 2022
In vdec fmt, there is a possible use after free due to improper locking. This could lead to local...
Moderate
Unreviewed
CVE-2022-26473
was published
Oct 8, 2022
In disp, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32648
was published
Jan 3, 2023
In vow, there is a possible information disclosure due to a race condition. This could lead to...
Moderate
Unreviewed
CVE-2022-32645
was published
Jan 3, 2023
In vow, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32644
was published
Jan 3, 2023
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface...
High
Unreviewed
CVE-2016-8368
was published
May 13, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32609
was published
Nov 9, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32610
was published
Nov 9, 2022
ProTip!
Advisories are also available from the
GraphQL API