Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,825
Erlang
36
GitHub Actions
32
Go
2,417
Maven
5,000+
npm
4,054
NuGet
723
pip
3,845
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

200 advisories

Loading
Memory corruption while processing simultaneous requests via escape path. High Unreviewed
CVE-2025-27076 was published Aug 6, 2025
Memory corruption when using Virtual cdm (Camera Data Mover) to write registers. High Unreviewed
CVE-2025-21473 was published Aug 6, 2025
Memory corruption while submitting blob data to kernel space though IOCTL. High Unreviewed
CVE-2025-21455 was published Aug 6, 2025
Race condition vulnerability in the virtualization base module. Successful exploitation of this... High Unreviewed
CVE-2025-54655 was published Aug 6, 2025
NVIDIA .run Installer for Linux and Solaris contains a vulnerability where an attacker could use... High Unreviewed
CVE-2025-23279 was published Aug 3, 2025
A race condition vulnerability exists in Armoury Crate. This vulnerability arises from a Time-of... High Unreviewed
CVE-2025-3464 was published Jun 16, 2025
Memory corruption while processing INIT and multimode invoke IOCTL calls on FastRPC. High Unreviewed
CVE-2025-21485 was published Jun 3, 2025
Medtronic MyCareLink Smart 25000 all versions are vulnerable to a race condition in the MCL Smart... High Unreviewed
CVE-2020-27252 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2019-1065 was published May 24, 2022
Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated... High Unreviewed
CVE-2025-30663 was published May 14, 2025
Time-of-check time-of-use race condition in the UEFI firmware SmiVariable driver for the Intel(R)... High Unreviewed
CVE-2025-20082 was published May 13, 2025
Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized... High Unreviewed
CVE-2025-29969 was published May 13, 2025
Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an... High Unreviewed
CVE-2025-29833 was published May 13, 2025
APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use ... High Unreviewed
CVE-2024-42446 was published May 13, 2025
Link Following Local Privilege Escalation Vulnerability in NortonUtilitiesSvc in Norton Utilities... High Unreviewed
CVE-2024-13944 was published May 9, 2025
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24995 was published Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24993 was published Apr 19, 2024
Memory corruption when blob structure is modified by user-space after kernel verification. High Unreviewed
CVE-2024-45565 was published May 6, 2025
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2022-44651 was published Dec 12, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious... High Unreviewed
CVE-2017-0412 was published May 13, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious... High Unreviewed
CVE-2017-0411 was published May 13, 2022
A Time-of-Check Time-of-Use bug existed in the Maintenance (Updater) Service that could be abused... High Unreviewed
CVE-2022-22753 was published Dec 22, 2022
When installing an add-on, Firefox verified the signature before prompting the user; but while... High Unreviewed
CVE-2022-26387 was published Dec 22, 2022
NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability... High Unreviewed
CVE-2025-23359 was published Feb 12, 2025
MSI Center before 2.0.52.0 allows TOCTOU Local Privilege Escalation. High Unreviewed
CVE-2025-27812 was published Apr 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database