GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,203
Composer 4,097
Erlang 29
GitHub Actions 19
Go 1,925
Maven 5,117
npm 3,656
NuGet 638
pip 3,264
Pub 10
RubyGems 873
Rust 823
Swift 35

Unreviewed advisories

All unreviewed 229,346

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,388 advisories

Filter by severity

Sort by

Least recently updated

In vcu, there is a possible out of bounds write due to a race condition. This could lead to local... Moderate Unreviewed

CVE-2023-20736 was published Jun 6, 2023

Multiple race conditions in the font initialization could have led to memory corruption and... High Unreviewed

CVE-2023-29537 was published Jun 2, 2023

A denial of service vulnerability exists in curl <v8.1.0 in the way libcurl provides several... Moderate Unreviewed

CVE-2023-28320 was published May 26, 2023

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net... Moderate Unreviewed

CVE-2023-33203 was published May 18, 2023

An authentication bypass vulnerability exists in Avalanche versions 6.3.x and below that could... Moderate Unreviewed

CVE-2023-28126 was published May 10, 2023

An improper authentication vulnerability exists in Avalanche Premise versions 6.3.x and below... Moderate Unreviewed

CVE-2023-28125 was published May 10, 2023

Windows Graphics Component Elevation of Privilege Vulnerability High Unreviewed

CVE-2023-24899 was published May 9, 2023

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability High Unreviewed

CVE-2023-21712 was published Apr 27, 2023

A race condition was found in the Linux kernel's RxRPC network protocol, within the processing of... High Unreviewed

CVE-2023-2006 was published Apr 24, 2023

A Race Condition exists in the Qualys Cloud Agent for Windows platform in versions from 3.1.3.34... High Unreviewed

CVE-2023-28142 was published Apr 18, 2023

A Use After Free vulnerability in the Layer 2 Address Learning Manager (l2alm) of Juniper... Moderate Unreviewed

CVE-2023-28984 was published Apr 18, 2023

Signal Handler Race Condition vulnerability in Mitsubishi Electric India GC-ENET-COM whose first... Moderate Unreviewed

CVE-2023-1285 was published Apr 14, 2023

In the standard library in Rust before 1.19.0, there is a synchronization problem in the... Moderate Unreviewed

CVE-2017-20004 was published May 24, 2022

A vulnerability in the syslog processing engine of Cisco Identity Services Engine (ISE) could... Moderate Unreviewed

CVE-2020-3353 was published May 24, 2022

An issue was discovered in Janus through 0.9.1. janus.c has multiple concurrent threads that... Moderate Unreviewed

CVE-2020-10577 was published May 24, 2022

log.c in Squid Analysis Report Generator (sarg) through 2.3.11 allows local privilege escalation.... High Unreviewed

CVE-2019-18932 was published May 24, 2022

Gentoo Portage through 2.3.84 allows local users to place a Trojan horse plugin in the /usr/lib64... Moderate Unreviewed

CVE-2019-20384 was published May 24, 2022

In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas... Moderate Unreviewed

CVE-2019-19965 was published May 24, 2022

Cryptographic timing conditions in the subsystem for Intel(R) PTT before versions 11.8.70, 11.11... Moderate Unreviewed

CVE-2019-11090 was published May 24, 2022

Certain detection module of P30, P30 Pro, Honor V20 smartphone whith Versions earlier than ELLE... High Unreviewed

CVE-2019-5228 was published May 24, 2022

A vulnerability has been found in the implementation of the Label Distribution Protocol (LDP)... Moderate Unreviewed

CVE-2019-14810 was published May 24, 2022

In the Easel driver, there is possible memory corruption due to race conditions. This could lead... Moderate Unreviewed

CVE-2019-2188 was published May 24, 2022

In the Easel driver, there is possible memory corruption due to race conditions. This could lead... Moderate Unreviewed

CVE-2019-2189 was published May 24, 2022

The Mozilla Maintenance Service does not guard against files being hardlinked to another file in... High Unreviewed

CVE-2019-11736 was published May 24, 2022

It was discovered that there was a ECDSA timing attack in the libgcrypt20 cryptographic library.... Moderate Unreviewed

CVE-2019-13627 was published May 24, 2022

Previous 1 2 … 5 6 7 8 9 … 55 56 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,388 advisories