Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,813 advisories

Loading
In audio driver, there is a use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-39134 was published Dec 6, 2022
In TBD of TBD, there is a possible way to archive arbitrary code execution in kernel due to a... High Unreviewed
CVE-2021-39660 was published Dec 13, 2022
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID... High Unreviewed
CVE-2022-44676 was published Dec 13, 2022
Windows Error Reporting Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-44669 was published Dec 13, 2022
A race condition was addressed with additional validation. This issue is fixed in tvOS 16.2,... High Unreviewed
CVE-2022-46689 was published Dec 15, 2022
A race condition was addressed with improved state handling. This issue is fixed in tvOS 16.2,... High Unreviewed
CVE-2022-42864 was published Dec 15, 2022
In pppol2tp_create of l2tp_ppp.c, there is a possible use after free due to a race condition.... Moderate Unreviewed
CVE-2022-20567 was published Dec 21, 2022
If two Workers were simultaneously initializing their CacheStorage, a data race could have... High Unreviewed
CVE-2022-42930 was published Dec 22, 2022
When visiting directory listings for `chrome://` URLs as source text, some parameters were... Moderate Unreviewed
CVE-2022-36318 was published Dec 22, 2022
Constructing audio sinks could have lead to a race condition when playing audio files and closing... High Unreviewed
CVE-2022-22737 was published Dec 22, 2022
A race condition could have allowed bypassing the fullscreen notification which could have lead... Moderate Unreviewed
CVE-2022-22746 was published Dec 22, 2022
When a worker is shutdown, it was possible to cause script to run late in the lifecycle, at a... High Unreviewed
CVE-2022-22763 was published Dec 22, 2022
GoBase Race Condition vulnerability Low
CVE-2022-2583 was published for github.com/ntbosscher/gobase (Go) Dec 28, 2022
efs-utils and aws-efs-csi-driver have race condition during concurrent TLS mounts Moderate
CVE-2022-46174 was published for github.com/kubernetes-sigs/aws-efs-csi-driver (Go) Dec 30, 2022
Use after free in Exosphere in Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79... High Unreviewed
CVE-2022-2742 was published Jan 3, 2023
In vow, there is a possible information disclosure due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-32645 was published Jan 3, 2023
Windows Local Session Manager (LSM) Elevation of Privilege Vulnerability. High Unreviewed
CVE-2023-21771 was published Jan 11, 2023
Windows Overlay Filter Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2023-21766 was published Jan 11, 2023
Windows Installer Elevation of Privilege Vulnerability. High Unreviewed
CVE-2023-21542 was published Jan 11, 2023
Windows Malicious Software Removal Tool Elevation of Privilege Vulnerability. Moderate Unreviewed
CVE-2023-21725 was published Jan 11, 2023
Windows Bind Filter Driver Elevation of Privilege Vulnerability. High Unreviewed
CVE-2023-21733 was published Jan 11, 2023
Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability. This CVE ID is... High Unreviewed
CVE-2023-21546 was published Jan 11, 2023
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID... High Unreviewed
CVE-2023-21535 was published Jan 11, 2023
Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability. This CVE ID is... High Unreviewed
CVE-2023-21679 was published Jan 11, 2023
Event Tracing for Windows Information Disclosure Vulnerability. This CVE ID is unique from CVE... Moderate Unreviewed
CVE-2023-21536 was published Jan 11, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database