Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,299
Erlang
31
GitHub Actions
21
Go
2,064
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+

656 advisories

Loading
race in VT-d domain ID cleanup Xen domain IDs are up to 15 bits wide. VT-d hardware may allow for... High Unreviewed
CVE-2022-26357 was published Apr 6, 2022
A use-after-free flaw was found in nci_request in net/nfc/nci/core.c in NFC Controller Interface ... High Unreviewed
CVE-2021-4202 was published Mar 26, 2022
Race Condition in Paramiko High
CVE-2022-24302 was published for paramiko (pip) Mar 19, 2022
ktosiek
Printix Secure Cloud Print Management 1.3.1035.0 creates a temporary file in directory with... High Unreviewed
CVE-2022-25090 was published Mar 11, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23036 was published Mar 11, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23038 was published Mar 11, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23039 was published Mar 11, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23040 was published Mar 11, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23037 was published Mar 11, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23041 was published Mar 11, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23042 was published Mar 11, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE... High Unreviewed
CVE-2022-23288 was published Mar 10, 2022
Windows ALPC Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-23287, CVE... High Unreviewed
CVE-2022-23283 was published Mar 10, 2022
Windows NT OS Kernel Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-23298 was published Mar 10, 2022
Tablet Windows User Interface Application Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-24460 was published Mar 10, 2022
Windows ALPC Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-23283, CVE... High Unreviewed
CVE-2022-24505 was published Mar 10, 2022
Windows Update Stack Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-24525 was published Mar 10, 2022
A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found... High Unreviewed
CVE-2021-3640 was published Mar 5, 2022
.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker... High Unreviewed
CVE-2021-3609 was published Mar 4, 2022
A race condition existed in the snapd 2.54.2 snap-confine binary when preparing a private mount... High Unreviewed
CVE-2021-44731 was published Feb 19, 2022
A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos... High Unreviewed
CVE-2020-25719 was published Feb 19, 2022
A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls... High Unreviewed
CVE-2021-3752 was published Feb 17, 2022
crossbeam-utils Race Condition vulnerability High
CVE-2022-23639 was published for crossbeam-utils (Rust) Feb 16, 2022
saethlin
Local privilege escalation due to race condition on application startup. The following products... High Unreviewed
CVE-2022-24114 was published Feb 11, 2022
Improper synchronization in Apache Netbeans HTML/Java API High
CVE-2020-17534 was published for org.netbeans.html:pom (Maven) Feb 9, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database