Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

329 advisories

Loading
Memory corruption while loading a VM from a signed VM image that is not coherent in the processor... High Unreviewed
CVE-2023-33119 was published May 6, 2024
Parallels Desktop Updater Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2023-27323 was published May 3, 2024
Tesla Model 3 Gateway Firmware Signature Validation Bypass Vulnerability. This vulnerability... Critical Unreviewed
CVE-2023-32156 was published May 3, 2024
Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2023-27327 was published May 3, 2024
Anti-tampering protection of the Zscaler Client Connector can be bypassed under certain... High Unreviewed
CVE-2024-23463 was published Apr 30, 2024
Windows Kernel Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2024-21362 was published Feb 13, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21371 was published Feb 13, 2024
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on... Moderate Unreviewed
CVE-2024-2440 was published Apr 19, 2024
OpenStack magnum vulnerable to time-of-check to time-of-use (TOCTOU) attack Moderate
CVE-2024-28718 was published for magnum (pip) Apr 12, 2024
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products,... High Unreviewed
CVE-2022-31642 was published Jun 14, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-27541 was published Jun 12, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31637 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31639 was published Jun 13, 2023
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products,... High Unreviewed
CVE-2022-31641 was published Jun 14, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31638 was published Jun 13, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31636 was published Jun 13, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-27539 was published Jun 12, 2023
Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP... High Unreviewed
CVE-2022-43777 was published Jun 12, 2023
Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS... High Unreviewed
CVE-2022-31635 was published Jun 13, 2023
Time-of-check Time-of-use (TOCTOU) in the BIOS2PSP command may allow an attacker with a malicious... Moderate Unreviewed
CVE-2021-46792 was published May 9, 2023
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-26218 was published Apr 9, 2024
Windows Distributed File System (DFS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-29066 was published Apr 9, 2024
Secure Boot Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-29062 was published Apr 9, 2024
Gradio apps vulnerable to timing attacks to guess password Moderate
CVE-2024-1729 was published for gradio (pip) Feb 22, 2024
VMware Fusion(13.x prior to 13.5) contains a TOCTOU (Time-of-check Time-of-use) vulnerability... High Unreviewed
CVE-2023-34046 was published Oct 20, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database