Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,793
Erlang
29
GitHub Actions
16
Go
1,710
Maven
4,947
npm
3,475
NuGet
605
pip
3,001
Pub
10
RubyGems
828
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+

267 advisories

A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus... High Unreviewed
CVE-2024-3290 was published May 17, 2024
A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus... High Unreviewed
CVE-2024-3292 was published May 17, 2024
Time-of-check Time-of-use race condition in Intel(R) Neural Compressor software before version 2... Moderate Unreviewed
CVE-2024-21792 was published May 16, 2024
A local attacker with low... High Unreviewed
CVE-2024-28137 was published May 14, 2024
A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically... Moderate Unreviewed
CVE-2024-2913 was published May 7, 2024
Memory corruption while loading a VM from a signed VM image that is not coherent in the processor... High Unreviewed
CVE-2023-33119 was published May 6, 2024
Tesla Model 3 Gateway Firmware Signature Validation Bypass Vulnerability. This vulnerability... Critical Unreviewed
CVE-2023-32156 was published May 3, 2024
Parallels Desktop Updater Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2023-27323 was published May 3, 2024
Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2023-27327 was published May 3, 2024
Anti-tampering protection of the Zscaler Client Connector can be bypassed under certain... High Unreviewed
CVE-2024-23463 was published Apr 30, 2024
OpenStack Storlets arbitrary code execution vulnerability High
CVE-2024-28717 was published for storlets (pip) Apr 22, 2024
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on... Moderate Unreviewed
CVE-2024-2440 was published Apr 19, 2024
OpenStack magnum vulnerable to time-of-check to time-of-use (TOCTOU) attack Moderate
CVE-2024-28718 was published for magnum (pip) Apr 12, 2024
Secure Boot Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-29062 was published Apr 9, 2024
Windows Distributed File System (DFS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-29066 was published Apr 9, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-26218 was published Apr 9, 2024
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in openEuler iSulad on Linux... High Unreviewed
CVE-2021-33632 was published Mar 25, 2024
Race condition in BIOS firmware for some Intel(R) Processors may allow a privileged user to... High Unreviewed
CVE-2023-32282 was published Mar 14, 2024
Race condition in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow... Moderate Unreviewed
CVE-2024-24692 was published Mar 13, 2024
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain a TOCTOU race condition... Moderate Unreviewed
CVE-2024-0163 was published Mar 13, 2024
In OpenBSD 7.4 before errata 009, a race condition between pf(4)'s processing of packets and... Unknown Unreviewed
CVE-2023-52556 was published Mar 1, 2024
Gradio apps vulnerable to timing attacks to guess password Moderate
CVE-2024-1729 was published for gradio (pip) Feb 22, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21371 was published Feb 13, 2024
Windows Kernel Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2024-21362 was published Feb 13, 2024
Memory corruption in Trusted Execution Environment while deinitializing an object used for... High Unreviewed
CVE-2023-33046 was published Feb 6, 2024
ProTip! Advisories are also available from the GraphQL API