Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

27 advisories

Loading
Go Snowflake Driver has race condition when checking access to Easy Logging configuration file Low
CVE-2025-46327 was published for github.com/snowflakedb/gosnowflake (Go) Apr 28, 2025
Wasmtime race condition could lead to WebAssembly control-flow integrity and type safety violations Low
CVE-2024-47813 was published for wasmtime (Rust) Oct 9, 2024
fitzgen alexcrichton
NodeJS Driver for Snowflake has race condition when checking access to Easy Logging configuration file Low
CVE-2025-46328 was published for snowflake-sdk (npm) Apr 28, 2025
Snowflake Connector for .NET has race condition when checking access to Easy Logging configuration file Low
CVE-2025-46326 was published for Snowflake.Data (NuGet) Apr 28, 2025
Magento Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability Low
CVE-2025-24432 was published for magento/community-edition (Composer) Feb 11, 2025
Magento Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability Low
CVE-2025-24430 was published for magento/community-edition (Composer) Feb 11, 2025
IBM EntireX 11.1 could allow a local user to unintentionally modify data timestamp integrity due... Low Unreviewed
CVE-2025-0759 was published Feb 27, 2025
Time-of-check time-of-use race condition in some Intel(R) Neural Compressor software before... Low Unreviewed
CVE-2024-37181 was published Jan 16, 2025
Potential proxy IP restriction bypass in Kubernetes Low
CVE-2020-8562 was published for k8s.io/kubernetes (Go) Feb 2, 2022
enj
he vulnerability is to delete arbitrary files in LGInstallService ("com.lge.lginstallservies")... Low Unreviewed
CVE-2023-44128 was published Sep 27, 2023
External service lookups for a number of protocols were vulnerable to a time-of-check/time-of-use... Low Unreviewed
CVE-2023-26438 was published Aug 2, 2023
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on... Low Unreviewed
CVE-2023-6690 was published Dec 21, 2023
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in YetAnotherStarsRating.Com YASR... Low Unreviewed
CVE-2023-37867 was published Nov 30, 2023
A time-of-check to time-of-use (TOCTOU) bug in handling of IOCTL (input/output control) requests.... Low Unreviewed
CVE-2023-5760 was published Nov 8, 2023
topgrade Time-of-check Time-of-use (TOCTOU) Race Condition in remove_dir_all Low
GHSA-f2wx-xjfw-xjv6 was published for topgrade (Rust) Jul 17, 2023
signed-log
Time-of-check Time-of-use (TOCTOU) Race Condition in chownr Low
CVE-2017-18869 was published for chownr (npm) Feb 10, 2022
tdunlap607
Race Condition Enabling Link Following and Time-of-check Time-of-use (TOCTOU) Race Condition in remove_dir_all Low
GHSA-mc8h-8q98-g5hr was published for remove_dir_all (Rust) Feb 24, 2023
shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees Low Unreviewed
CVE-2013-4235 was published May 5, 2022
A security feature bypass exists when Device Guard incorrectly validates an untrusted file, aka ... Low Unreviewed
CVE-2018-8449 was published May 13, 2022
A security feature bypass exists when Device Guard incorrectly validates an untrusted file, aka ... Low Unreviewed
CVE-2018-0966 was published May 13, 2022
Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport... Low Unreviewed
CVE-2020-8833 was published May 24, 2022
In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of... Low Unreviewed
CVE-2020-0003 was published May 24, 2022
A Race Condition Enabling Link Following vulnerability in the cron job shipped with texlive... Low Unreviewed
CVE-2020-8017 was published May 24, 2022
Unauth. Race Condition vulnerability in WP ULike Plugin <= 4.6.4 on WordPress allows attackers to... Low Unreviewed
CVE-2022-45842 was published Nov 30, 2022
CISOfy Lynis before 3.0.0 has Incorrect Access Control because of a TOCTOU race condition. The... Low Unreviewed
CVE-2020-13882 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database