Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,850
Erlang
36
GitHub Actions
34
Go
2,480
Maven
5,000+
npm
4,097
NuGet
734
pip
3,910
Pub
12
RubyGems
945
Rust
1,014
Swift
39
Unreviewed advisories
All unreviewed
5,000+

146 advisories

Loading
Race Condition in the Directory Validation Logic in the TeamViewer Full Client and Host prior... Moderate Unreviewed
CVE-2025-44002 was published Aug 26, 2025
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Saad Iqbal myCred allows... Moderate Unreviewed
CVE-2025-54667 was published Aug 14, 2025
Time-of-check time-of-use race condition in firmware for some Intel(R) Converged Security and... Moderate Unreviewed
CVE-2025-20037 was published Aug 12, 2025
Adobe Commerce versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and... Moderate Unreviewed
CVE-2025-49558 was published Aug 12, 2025
fts.c in coreutils 8.4 allows local users to delete arbitrary files. Moderate Unreviewed
CVE-2015-1865 was published May 17, 2022
A logic error was addressed with improved error handling. This issue is fixed in macOS Sequoia 15... Moderate Unreviewed
CVE-2025-43276 was published Jul 30, 2025
Path traversal in Team Chat for some Zoom Workplace Apps and SDKs for Windows may allow an... Moderate Unreviewed
CVE-2024-39826 was published Jul 15, 2024
There exists a TOCTOU race condition in TvSettings AppRestrictionsFragment.java that lead to... Moderate Unreviewed
CVE-2025-8192 was published Jul 31, 2025
Time-of-check to time-of-use race condition vulnerability potentially allowed an attacker to use... Moderate Unreviewed
CVE-2025-2425 was published Jul 18, 2025
Time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized... Moderate Unreviewed
CVE-2025-48818 was published Jul 8, 2025
Time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized... Moderate Unreviewed
CVE-2025-48001 was published Jul 8, 2025
An issue has been discovered in GitLab EE affecting all versions prior to 17.10.8, 17.11 prior to... Moderate Unreviewed
CVE-2024-9512 was published Jun 12, 2025
Memory corruption may occur while processing the OIS packet parser. Moderate Unreviewed
CVE-2024-53018 was published Jun 3, 2025
Memory corruption while processing I2C settings in Camera driver. Moderate Unreviewed
CVE-2024-53016 was published Jun 3, 2025
A time-of-check-time-of-use (TOCTOU) race condition vulnerability was found in networkd... Moderate Unreviewed
CVE-2022-29800 was published Sep 22, 2022
Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to... Moderate Unreviewed
CVE-2025-46805 was published May 26, 2025
Rack session gets restored after deletion Moderate
CVE-2025-46336 was published for rack-session (RubyGems) May 8, 2025
stengineering0 jeremyevans
ioquatix
Rack session gets restored after deletion Moderate
CVE-2025-32441 was published for rack (RubyGems) May 8, 2025
stengineering0 jeremyevans
ioquatix
Dell PowerScale OneFS, versions 9.8.0.0 through 9.10.1.0, contain a time-of-check time-of-use ... Moderate Unreviewed
CVE-2025-30101 was published May 8, 2025
A time-of-check time-of-use vulnerability in PulseSecureService.exe in Pulse Secure Client... Moderate Unreviewed
CVE-2020-13162 was published May 24, 2022
Alpine before 2.25 allows remote attackers to cause a denial of service (daemon crash) when LIST... Moderate Unreviewed
CVE-2021-46853 was published Nov 3, 2022
DMA attacks on the parameter buffer used by a software SMI handler used by the driver PcdSmmDxe... Moderate Unreviewed
CVE-2022-32266 was published Nov 15, 2022
Tesla Model S Iris Modem Race Condition Firewall Bypass Vulnerability. This vulnerability allows... Moderate Unreviewed
CVE-2024-6029 was published Apr 30, 2025
Symantec Endpoint Protection Windows Agent, running an ERASER Engine prior to 119.1.7.8, may be... Moderate Unreviewed
CVE-2025-3599 was published Apr 30, 2025
WordPress is affected by an unauthenticated blind SSRF in the pingback feature. Because of a... Moderate Unreviewed
CVE-2022-3590 was published Dec 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database