Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,840
Erlang
36
GitHub Actions
33
Go
2,464
Maven
5,000+
npm
4,082
NuGet
723
pip
3,880
Pub
12
RubyGems
943
Rust
1,011
Swift
39
Unreviewed advisories
All unreviewed
5,000+

217 advisories

Loading
Time-of-check time-of-use (toctou) race condition in Windows Subsystem for Linux allows an... High Unreviewed
CVE-2025-53788 was published Aug 12, 2025
Time-of-check time-of-use (toctou) race condition in Windows NTFS allows an unauthorized attacker... High Unreviewed
CVE-2025-50158 was published Aug 12, 2025
Time-of-check Time-of-use race condition for some Intel(R) Connectivity Performance Suite... High Unreviewed
CVE-2025-20074 was published Aug 12, 2025
Apache Tomcat Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability High
CVE-2024-50379 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Dec 17, 2024
biehl1
Memory corruption while processing simultaneous requests via escape path. High Unreviewed
CVE-2025-27076 was published Aug 6, 2025
Memory corruption when using Virtual cdm (Camera Data Mover) to write registers. High Unreviewed
CVE-2025-21473 was published Aug 6, 2025
Memory corruption while submitting blob data to kernel space though IOCTL. High Unreviewed
CVE-2025-21455 was published Aug 6, 2025
Race condition vulnerability in the virtualization base module. Successful exploitation of this... High Unreviewed
CVE-2025-54655 was published Aug 6, 2025
NVIDIA .run Installer for Linux and Solaris contains a vulnerability where an attacker could use... High Unreviewed
CVE-2025-23279 was published Aug 3, 2025
A race condition vulnerability exists in Armoury Crate. This vulnerability arises from a Time-of... High Unreviewed
CVE-2025-3464 was published Jun 16, 2025
Memory corruption while processing INIT and multimode invoke IOCTL calls on FastRPC. High Unreviewed
CVE-2025-21485 was published Jun 3, 2025
containerd allows host filesystem access on pull High
CVE-2025-47290 was published for github.com/containerd/containerd/v2 (Go) May 21, 2025
tonistiigi
Medtronic MyCareLink Smart 25000 all versions are vulnerable to a race condition in the MCL Smart... High Unreviewed
CVE-2020-27252 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2019-1065 was published May 24, 2022
Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated... High Unreviewed
CVE-2025-30663 was published May 14, 2025
Time-of-check time-of-use race condition in the UEFI firmware SmiVariable driver for the Intel(R)... High Unreviewed
CVE-2025-20082 was published May 13, 2025
Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an... High Unreviewed
CVE-2025-29833 was published May 13, 2025
Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized... High Unreviewed
CVE-2025-29969 was published May 13, 2025
APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use ... High Unreviewed
CVE-2024-42446 was published May 13, 2025
Link Following Local Privilege Escalation Vulnerability in NortonUtilitiesSvc in Norton Utilities... High Unreviewed
CVE-2024-13944 was published May 9, 2025
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24995 was published Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24993 was published Apr 19, 2024
Memory corruption when blob structure is modified by user-space after kernel verification. High Unreviewed
CVE-2024-45565 was published May 6, 2025
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2022-44651 was published Dec 12, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious... High Unreviewed
CVE-2017-0412 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database