Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
656
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

164 advisories

Loading
There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for... High Unreviewed
CVE-2022-0915 was published Apr 13, 2022
Time-of-check Time-of-use (TOCTOU) Race Condition vulerability in Foscam R2C IP camera running... High Unreviewed
CVE-2022-28743 was published Apr 22, 2022
Race condition issues were found in Calibre at devices/linux_mount_helper.c allowing unprivileged... High Unreviewed
CVE-2011-4126 was published Apr 22, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC... High Unreviewed
CVE-2021-30343 was published Jun 15, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC... High Unreviewed
CVE-2021-30342 was published Jun 15, 2022
Possible hypervisor memory corruption due to TOC TOU race condition when updating address... High Unreviewed
CVE-2021-35090 was published Jun 15, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? right after a... High Unreviewed
CVE-2021-30347 was published Jun 15, 2022
Improper integrity check can lead to race condition between tasks PDCP and RRC? right after a... High Unreviewed
CVE-2021-35082 was published Jun 15, 2022
The Automox Agent installation package before 37 on macOS allows an unprivileged user to obtain... High Unreviewed
CVE-2022-27904 was published Jul 2, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2021-34986 was published Jul 16, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2022-34899 was published Jul 19, 2022
DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI... High Unreviewed
CVE-2022-33985 was published Nov 15, 2022
DMA transactions which are targeted at input buffers used for the StorageSecurityCommandDxe... High Unreviewed
CVE-2022-34325 was published Nov 15, 2022
Memory corruption in Multimedia Framework due to unsafe access to the data members High Unreviewed
CVE-2022-25716 was published Jan 9, 2023
A Time of Check Time of Use (TOCTOU) vulnerability was reported in IMController, a software... High Unreviewed
CVE-2021-3969 was published May 19, 2022
Quick Heal Total Security before 12.1.1.27 has a TOCTOU race condition that leads to privilege... High Unreviewed
CVE-2022-31466 was published May 24, 2022
TOCTOU vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022... High Unreviewed
CVE-2022-39908 was published Dec 8, 2022
By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security... High Unreviewed
CVE-2021-23892 was published May 24, 2022
DMA transactions which are targeted at input buffers used for the AhciBusDxe software SMI handler... High Unreviewed
CVE-2022-33905 was published Nov 15, 2022
DMA transactions which are targeted at input buffers used for the NvmExpressLegacy software SMI... High Unreviewed
CVE-2022-33983 was published Nov 15, 2022
DMA transactions which are targeted at input buffers used for the SdHostDriver software SMI... High Unreviewed
CVE-2022-33908 was published Nov 15, 2022
Memory corruption in display due to time-of-check time-of-use race condition during map or unmap... High Unreviewed
CVE-2022-25696 was published Sep 17, 2022
Memory corruption or temporary denial of service due to improper handling of concurrent... High Unreviewed
CVE-2022-22093 was published Sep 17, 2022
DMA transactions which are targeted at input buffers used for the HddPassword software SMI... High Unreviewed
CVE-2022-33909 was published Nov 15, 2022
memory corruption in Kernel due to race condition while getting mapping reference in Snapdragon... High Unreviewed
CVE-2022-22094 was published Sep 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database