Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,802 advisories

Loading
A signal handler in sshd(8) may call a logging function that is not async-signal-safe. The... High Unreviewed
CVE-2024-7589 was published Aug 12, 2024
Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38136 was published Aug 13, 2024
Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38137 was published Aug 13, 2024
Kernel Streaming Service Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38191 was published Aug 13, 2024
The Object Request Broker (ORB) in IBM SDK, Java Technology Edition 7.1.0.0 through 7.1.5.18 and... Moderate Unreviewed
CVE-2024-27267 was published Aug 14, 2024
Policy bypass for Host Firewall policy due to race condition in Cilium agent Moderate
CVE-2024-42488 was published for github.com/cilium/cilium (Go) Aug 15, 2024
skmatti
Credited to skmatti
In multiple functions of TranscodingResourcePolicy.cpp, there is a possible memory corruption due... High Unreviewed
CVE-2024-34731 was published Aug 16, 2024
In the Linux kernel, the following vulnerability has been resolved: erofs: fix race in... Moderate Unreviewed
CVE-2024-42300 was published Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always drain... Moderate Unreviewed
CVE-2024-43866 was published Aug 21, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: do not complete... Moderate Unreviewed
CVE-2022-48898 was published Aug 21, 2024
Undertow vulnerable to Race Condition High
CVE-2024-7885 was published for io.undertow:undertow-core (Maven) Aug 21, 2024
jw123023
Credited to jw123023
In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix fault in... Moderate Unreviewed
CVE-2022-48921 was published Aug 22, 2024
In the Linux kernel, the following vulnerability has been resolved: ice: fix concurrent reset... Moderate Unreviewed
CVE-2022-48941 was published Aug 22, 2024
In the Linux kernel, the following vulnerability has been resolved: configfs: fix a race in... Moderate Unreviewed
CVE-2022-48931 was published Aug 22, 2024
In the Linux kernel, the following vulnerability has been resolved: ALSA: line6: Fix racy access... Moderate Unreviewed
CVE-2024-44954 was published Sep 4, 2024
The Bit File Manager plugin for WordPress is vulnerable to Remote Code Execution in versions 6.0... High Unreviewed
CVE-2024-7627 was published Sep 5, 2024
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43467 was published Sep 10, 2024
Race condition in Seamless Firmware Updates for some Intel(R) reference platforms may allow a... High Unreviewed
CVE-2024-23599 was published Sep 16, 2024
A race condition in UEFI firmware for some Intel(R) processors may allow a privileged user to... High Unreviewed
CVE-2023-41833 was published Sep 16, 2024
A race condition was addressed with improved locking. This issue is fixed in macOS Ventura 13.7,... High Unreviewed
CVE-2024-27876 was published Sep 17, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race between... Moderate Unreviewed
CVE-2024-46734 was published Sep 18, 2024
Incorrect delegation lookups can make go-tuf download the wrong artifact High
CVE-2024-47534 was published for github.com/theupdateframework/go-tuf/v2 (Go) Oct 1, 2024
AdamKorcz mamccorm
Credited to AdamKorcz and mamccorm
A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series... Moderate Unreviewed
CVE-2024-20509 was published Oct 2, 2024
Race condition during resource shutdown in some Solidigm DC Products may allow an attacker to... Moderate Unreviewed
CVE-2024-47974 was published Oct 7, 2024
Improper resource shutdown in middle of certain operations on some Solidigm DC Products may allow... Moderate Unreviewed
CVE-2024-47968 was published Oct 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database