GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,656
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,388 advisories
Filter by severity
In vcu, there is a possible out of bounds write due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20736
was published
Jun 6, 2023
Multiple race conditions in the font initialization could have led to memory corruption and...
High
Unreviewed
CVE-2023-29537
was published
Jun 2, 2023
A denial of service vulnerability exists in curl <v8.1.0 in the way libcurl provides several...
Moderate
Unreviewed
CVE-2023-28320
was published
May 26, 2023
The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net...
Moderate
Unreviewed
CVE-2023-33203
was published
May 18, 2023
An authentication bypass vulnerability exists in Avalanche versions 6.3.x and below that could...
Moderate
Unreviewed
CVE-2023-28126
was published
May 10, 2023
An improper authentication vulnerability exists in Avalanche Premise versions 6.3.x and below...
Moderate
Unreviewed
CVE-2023-28125
was published
May 10, 2023
Windows Graphics Component Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2023-24899
was published
May 9, 2023
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
High
Unreviewed
CVE-2023-21712
was published
Apr 27, 2023
A race condition was found in the Linux kernel's RxRPC network protocol, within the processing of...
High
Unreviewed
CVE-2023-2006
was published
Apr 24, 2023
A Race Condition exists in the Qualys Cloud Agent for Windows
platform in versions from 3.1.3.34...
High
Unreviewed
CVE-2023-28142
was published
Apr 18, 2023
A Use After Free vulnerability in the Layer 2 Address Learning Manager (l2alm) of Juniper...
Moderate
Unreviewed
CVE-2023-28984
was published
Apr 18, 2023
Signal Handler Race Condition vulnerability in Mitsubishi Electric India GC-ENET-COM whose first...
Moderate
Unreviewed
CVE-2023-1285
was published
Apr 14, 2023
In the standard library in Rust before 1.19.0, there is a synchronization problem in the...
Moderate
Unreviewed
CVE-2017-20004
was published
May 24, 2022
A vulnerability in the syslog processing engine of Cisco Identity Services Engine (ISE) could...
Moderate
Unreviewed
CVE-2020-3353
was published
May 24, 2022
An issue was discovered in Janus through 0.9.1. janus.c has multiple concurrent threads that...
Moderate
Unreviewed
CVE-2020-10577
was published
May 24, 2022
log.c in Squid Analysis Report Generator (sarg) through 2.3.11 allows local privilege escalation....
High
Unreviewed
CVE-2019-18932
was published
May 24, 2022
Gentoo Portage through 2.3.84 allows local users to place a Trojan horse plugin in the /usr/lib64...
Moderate
Unreviewed
CVE-2019-20384
was published
May 24, 2022
In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas...
Moderate
Unreviewed
CVE-2019-19965
was published
May 24, 2022
Cryptographic timing conditions in the subsystem for Intel(R) PTT before versions 11.8.70, 11.11...
Moderate
Unreviewed
CVE-2019-11090
was published
May 24, 2022
Certain detection module of P30, P30 Pro, Honor V20 smartphone whith Versions earlier than ELLE...
High
Unreviewed
CVE-2019-5228
was published
May 24, 2022
A vulnerability has been found in the implementation of the Label Distribution Protocol (LDP)...
Moderate
Unreviewed
CVE-2019-14810
was published
May 24, 2022
In the Easel driver, there is possible memory corruption due to race conditions. This could lead...
Moderate
Unreviewed
CVE-2019-2188
was published
May 24, 2022
In the Easel driver, there is possible memory corruption due to race conditions. This could lead...
Moderate
Unreviewed
CVE-2019-2189
was published
May 24, 2022
The Mozilla Maintenance Service does not guard against files being hardlinked to another file in...
High
Unreviewed
CVE-2019-11736
was published
May 24, 2022
It was discovered that there was a ECDSA timing attack in the libgcrypt20 cryptographic library....
Moderate
Unreviewed
CVE-2019-13627
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API