Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

380 advisories

Loading
Tesla Model S Iris Modem Race Condition Firewall Bypass Vulnerability. This vulnerability allows... Moderate Unreviewed
CVE-2024-6029 was published Apr 30, 2025
Symantec Endpoint Protection Windows Agent, running an ERASER Engine prior to 119.1.7.8, may be... Moderate Unreviewed
CVE-2025-3599 was published Apr 30, 2025
NodeJS Driver for Snowflake has race condition when checking access to Easy Logging configuration file Low
CVE-2025-46328 was published for snowflake-sdk (npm) Apr 28, 2025
Snowflake Connector for .NET has race condition when checking access to Easy Logging configuration file Low
CVE-2025-46326 was published for Snowflake.Data (NuGet) Apr 28, 2025
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2022-44651 was published Dec 12, 2022
WordPress is affected by an unauthenticated blind SSRF in the pingback feature. Because of a... Moderate Unreviewed
CVE-2022-3590 was published Dec 14, 2022
Device Guard in Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows... Moderate Unreviewed
CVE-2017-11830 was published May 13, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious... High Unreviewed
CVE-2017-0412 was published May 13, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious... High Unreviewed
CVE-2017-0411 was published May 13, 2022
A Time-of-Check Time-of-Use bug existed in the Maintenance (Updater) Service that could be abused... High Unreviewed
CVE-2022-22753 was published Dec 22, 2022
When installing an add-on, Firefox verified the signature before prompting the user; but while... High Unreviewed
CVE-2022-26387 was published Dec 22, 2022
NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability... High Unreviewed
CVE-2025-23359 was published Feb 12, 2025
In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: uefisecapp:... Moderate Unreviewed
CVE-2025-21998 was published Apr 3, 2025
MSI Center before 2.0.52.0 allows TOCTOU Local Privilege Escalation. High Unreviewed
CVE-2025-27812 was published Apr 10, 2025
Time-of-check time-of-use (toctou) race condition in Windows Local Security Authority (LSA)... High Unreviewed
CVE-2025-21191 was published Apr 8, 2025
Information disclosure may be there when a guest VM is connected. Moderate Unreviewed
CVE-2025-21431 was published Apr 7, 2025
Memory corruption occurs during the copying of read data from the EEPROM because the IO... High Unreviewed
CVE-2024-43067 was published Apr 7, 2025
A vulnerability exists in Trend Micro Maximum Security 2022 (17.7) wherein a low-privileged user... High Unreviewed
CVE-2022-48191 was published Jan 20, 2023
Calling `PK11_Encrypt()` in NSS using CKM_CHACHA20 and the same buffer for input and output can... Moderate Unreviewed
CVE-2024-7531 was published Aug 6, 2024
APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use ... High Unreviewed
CVE-2024-54084 was published Mar 11, 2025
A time-of-check time-of-use (TOCTOU) race condition vulnerability has been reported to affect... High Unreviewed
CVE-2024-53694 was published Mar 7, 2025
VMware ESXi, and Workstation contain a TOCTOU (Time-of-Check Time-of-Use) vulnerability that... Critical Unreviewed
CVE-2025-22224 was published Mar 4, 2025
Memory corruption may occur while processing message from frontend during allocation. High Unreviewed
CVE-2024-53028 was published Mar 3, 2025
Memory corruption may occur in keyboard virtual device due to guest VM interaction. High Unreviewed
CVE-2024-53032 was published Mar 3, 2025
Magento Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability Low
CVE-2025-24432 was published for magento/community-edition (Composer) Feb 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database