GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
329 advisories
Filter by severity
VMware Fusion(13.x prior to 13.5) contains a TOCTOU (Time-of-check Time-of-use)
vulnerability...
High
Unreviewed
CVE-2023-34046
was published
Oct 20, 2023
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in telemetry processing of...
Moderate
Unreviewed
CVE-2023-44188
was published
Oct 11, 2023
An issue in CatoNetworks CatoClient before v.5.4.0 allows attackers to escalate privileges and...
High
Unreviewed
CVE-2023-43976
was published
Oct 3, 2023
he vulnerability is to delete arbitrary files in LGInstallService ("com.lge.lginstallservies")...
Low
Unreviewed
CVE-2023-44128
was published
Sep 27, 2023
Race condition in Lapce v0.2.8 allows an attacker to elevate privileges on the system
High
Unreviewed
CVE-2023-3891
was published
Sep 15, 2023
Razer Synapse through 3.7.1209.121307 allows privilege escalation due to an unsafe installation...
High
Unreviewed
CVE-2022-47631
was published
Sep 15, 2023
A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM...
Moderate
Unreviewed
CVE-2023-4155
was published
Sep 13, 2023
A vulnerability in Cisco IOS XR Software image verification checks could allow an authenticated,...
High
Unreviewed
CVE-2023-20135
was published
Sep 13, 2023
BASupSrvcUpdater.exe in N-able Take Control Agent through 7.0.41.1141 before 7.0.43 has a TOCTOU...
High
Unreviewed
CVE-2023-27470
was published
Sep 11, 2023
Unity Parsec before 8 has a TOCTOU race condition that permits local attackers to escalate...
High
Unreviewed
CVE-2023-37250
was published
Aug 20, 2023
Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated...
Moderate
Unreviewed
CVE-2023-28075
was published
Aug 16, 2023
The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in...
High
Unreviewed
CVE-2023-28576
was published
Aug 8, 2023
In thermal, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20787
was published
Aug 7, 2023
In thermal, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20788
was published
Aug 7, 2023
In audio, there is a possible out of bounds write due to a missing bounds check. This could lead...
Moderate
Unreviewed
CVE-2023-20785
was published
Aug 7, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.9 before 16...
Critical
Unreviewed
CVE-2023-4008
was published
Aug 3, 2023
External service lookups for a number of protocols were vulnerable to a time-of-check/time-of-use...
Low
Unreviewed
CVE-2023-26438
was published
Aug 2, 2023
IBM Spectrum Protect 8.1.0.0 through 8.1.17.0 could allow a local user to cause a denial of...
Moderate
Unreviewed
CVE-2023-33832
was published
Jul 19, 2023
topgrade Time-of-check Time-of-use (TOCTOU) Race Condition in remove_dir_all
Low
GHSA-f2wx-xjfw-xjv6
was published
for
topgrade
(Rust)
Jul 17, 2023
Microsoft Outlook Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2023-35311
was published
Jul 11, 2023
Multiple vulnerabilities including an incorrect permission assignment for critical resource [CWE...
High
Unreviewed
CVE-2022-43946
was published
Jul 6, 2023
A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in certain HP...
High
Unreviewed
CVE-2023-26299
was published
Jun 30, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.7 before 15.8.5,...
Moderate
Unreviewed
CVE-2022-4143
was published
Jun 28, 2023
A time-of-check to time-of-use issue exists in io_uring subsystem's IORING_OP_CLOSE operation in...
High
Unreviewed
CVE-2023-1295
was published
Jun 28, 2023
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service...
High
Unreviewed
CVE-2023-32554
was published
Jun 27, 2023
ProTip!
Advisories are also available from the
GraphQL API