Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,488
Maven
5,000+
npm
4,104
NuGet
735
pip
3,923
Pub
12
RubyGems
945
Rust
1,017
Swift
39
Unreviewed advisories
All unreviewed
5,000+

219 advisories

Loading
Velocidex WinPmem versions below 4.1 suffer from an Improper Input Validation vulnerability... High Unreviewed
CVE-2024-10972 was published Dec 16, 2024
In the Linux kernel, the following vulnerability has been resolved: posix-cpu-timers: fix race... High Unreviewed
CVE-2025-38352 was published Jul 22, 2025
Time-of-check time-of-use (toctou) race condition in Windows Subsystem for Linux allows an... High Unreviewed
CVE-2025-53788 was published Aug 12, 2025
Time-of-check time-of-use (toctou) race condition in Windows NTFS allows an unauthorized attacker... High Unreviewed
CVE-2025-50158 was published Aug 12, 2025
Time-of-check Time-of-use race condition for some Intel(R) Connectivity Performance Suite... High Unreviewed
CVE-2025-20074 was published Aug 12, 2025
Apache Tomcat Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability High
CVE-2024-50379 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Dec 17, 2024
biehl1
Memory corruption while processing simultaneous requests via escape path. High Unreviewed
CVE-2025-27076 was published Aug 6, 2025
Memory corruption while submitting blob data to kernel space though IOCTL. High Unreviewed
CVE-2025-21455 was published Aug 6, 2025
Memory corruption when using Virtual cdm (Camera Data Mover) to write registers. High Unreviewed
CVE-2025-21473 was published Aug 6, 2025
Race condition vulnerability in the virtualization base module. Successful exploitation of this... High Unreviewed
CVE-2025-54655 was published Aug 6, 2025
NVIDIA .run Installer for Linux and Solaris contains a vulnerability where an attacker could use... High Unreviewed
CVE-2025-23279 was published Aug 3, 2025
A race condition vulnerability exists in Armoury Crate. This vulnerability arises from a Time-of... High Unreviewed
CVE-2025-3464 was published Jun 16, 2025
Memory corruption while processing INIT and multimode invoke IOCTL calls on FastRPC. High Unreviewed
CVE-2025-21485 was published Jun 3, 2025
containerd allows host filesystem access on pull High
CVE-2025-47290 was published for github.com/containerd/containerd/v2 (Go) May 21, 2025
tonistiigi
Medtronic MyCareLink Smart 25000 all versions are vulnerable to a race condition in the MCL Smart... High Unreviewed
CVE-2020-27252 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2019-1065 was published May 24, 2022
Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated... High Unreviewed
CVE-2025-30663 was published May 14, 2025
Time-of-check time-of-use race condition in the UEFI firmware SmiVariable driver for the Intel(R)... High Unreviewed
CVE-2025-20082 was published May 13, 2025
Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized... High Unreviewed
CVE-2025-29969 was published May 13, 2025
Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an... High Unreviewed
CVE-2025-29833 was published May 13, 2025
APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use ... High Unreviewed
CVE-2024-42446 was published May 13, 2025
Link Following Local Privilege Escalation Vulnerability in NortonUtilitiesSvc in Norton Utilities... High Unreviewed
CVE-2024-13944 was published May 9, 2025
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24995 was published Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24993 was published Apr 19, 2024
Memory corruption when blob structure is modified by user-space after kernel verification. High Unreviewed
CVE-2024-45565 was published May 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database