Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

771 advisories

Loading
In stealReceiveChannel of EventThread.cpp, there is a possible way to interfere with process... High Unreviewed
CVE-2022-20344 was published Aug 11, 2022
Windows Hyper-V Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-34696 was published Aug 10, 2022
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID... High Unreviewed
CVE-2022-34702 was published Aug 10, 2022
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-33636 was published Aug 10, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-35796 was published Aug 10, 2022
An issue was discovered in bgpd in FRRouting (FRR) 8.3. In bgp_notify_send_with_data() and... High Unreviewed
CVE-2022-37035 was published Aug 3, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2022-34892 was published Jul 19, 2022
October CMS upload process vulnerable to RCE via Race Condition High
CVE-2022-24800 was published for october/system (Composer) Jul 13, 2022
In GPU, there is a possible use after free due to a race condition. This could lead to local... High Unreviewed
CVE-2022-20082 was published Jul 7, 2022
Versions of the Amazon AWS Apache Log4j hotpatch package before log4j-cve-2021-44228-hotpatch-1.3... High Unreviewed
CVE-2022-33915 was published Jun 18, 2022
Data race in `Iter` and `IterMut` High
GHSA-9hpw-r23r-xgm5 was published for thread_local (Rust) Jun 17, 2022
In ipu_core_jqs_msg_transport_kernel_write_sync of ipu-core-jqs-msg-transport.c, there is a... High Unreviewed
CVE-2022-20155 was published Jun 16, 2022
In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking. This... High Unreviewed
CVE-2022-20141 was published Jun 16, 2022
Windows Hyper-V Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-30163 was published Jun 16, 2022
Improper serialization of message queue client registration can lead to race condition allowing... High Unreviewed
CVE-2021-35095 was published Jun 15, 2022
Uncaught Exception (due to a data race) leads to process termination in Waitress High
CVE-2022-31015 was published for waitress (pip) Jun 2, 2022
oakkitten
Credited to oakkitten
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from... High Unreviewed
CVE-2022-30127 was published Jun 2, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from... High Unreviewed
CVE-2022-30128 was published Jun 2, 2022
A race condition was addressed with improved locking. This issue is fixed in tvOS 15.5, macOS... High Unreviewed
CVE-2022-26701 was published May 27, 2022
An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS... High Unreviewed
CVE-2019-18421 was published May 24, 2022
An issue was discovered in the Linux kernel before 4.20. There is a race condition in... High Unreviewed
CVE-2018-20836 was published May 24, 2022
Race condition in PSP FW could allow less privileged x86 code to perform PSP SMM operations. High Unreviewed
CVE-2020-12951 was published May 24, 2022
Race in V8 in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially... High Unreviewed
CVE-2021-37991 was published May 24, 2022
A local attacker could bypass the app password using a race condition in Sophos Secure Workspace... High Unreviewed
CVE-2021-36808 was published May 24, 2022
There is a issue that nodes in the linked list being freed for multiple times in Huawei... High Unreviewed
CVE-2021-36987 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database