GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,030
Maven
5,000+
npm
3,732
NuGet
662
pip
3,409
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
36 advisories
Filter by severity
An information disclosure issue has been discovered in GitLab EE affecting all versions starting...
Moderate
Unreviewed
CVE-2024-4278
was published
Sep 26, 2024
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS)...
High
Unreviewed
CVE-2024-7409
was published
Aug 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
tracing: Restructure...
Moderate
Unreviewed
CVE-2021-46939
was published
Feb 27, 2024
An issue exists in SoftIron HyperCloud where drive caddy removal and reinsertion without a reboot...
High
Unreviewed
CVE-2023-45084
was published
Dec 5, 2023
A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset...
Moderate
Unreviewed
CVE-2023-5088
was published
Nov 3, 2023
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2023-28229
was published
Apr 11, 2023
In adsp, there is a possible double free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20625
was published
Mar 7, 2023
In gpu, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20611
was published
Feb 6, 2023
In display drm, there is a possible memory corruption due to a race condition. This could lead to...
Moderate
Unreviewed
CVE-2023-20610
was published
Feb 6, 2023
In ccu, there is a possible memory corruption due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20607
was published
Feb 6, 2023
In ccd, there is a possible memory corruption due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32642
was published
Feb 6, 2023
In ccd, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32643
was published
Feb 6, 2023
Western Digital has identified a weakness in the UFS standard that could result in a security...
High
Unreviewed
CVE-2022-23005
was published
Jan 24, 2023
In disp, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32648
was published
Jan 3, 2023
In vow, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32644
was published
Jan 3, 2023
In vow, there is a possible information disclosure due to a race condition. This could lead to...
Moderate
Unreviewed
CVE-2022-32645
was published
Jan 3, 2023
In vcu, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32609
was published
Nov 9, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32610
was published
Nov 9, 2022
In vcu, there is a possible memory corruption due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32613
was published
Nov 9, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32612
was published
Nov 9, 2022
A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by...
High
Unreviewed
CVE-2022-3565
was published
Oct 18, 2022
In isp, there is a possible use after free due to improper locking. This could lead to local...
Moderate
Unreviewed
CVE-2022-26452
was published
Oct 8, 2022
In vdec fmt, there is a possible use after free due to improper locking. This could lead to local...
Moderate
Unreviewed
CVE-2022-26473
was published
Oct 8, 2022
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or...
High
Unreviewed
CVE-2022-2962
was published
Sep 14, 2022
Incorrect Synchronization in GitHub repository polonel/trudesk prior to 1.2.3.
High
Unreviewed
CVE-2022-1931
was published
Jun 1, 2022
ProTip!
Advisories are also available from the
GraphQL API