GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
323 advisories
Filter by severity
The virtio_vq_recordon function is subject to a time-of-check to time-of-use (TOCTOU) race...
Moderate
Unreviewed
CVE-2024-51563
was published
Nov 12, 2024
IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2 and 7.0.3 could allow a remote...
Critical
Unreviewed
CVE-2024-41779
was published
Nov 22, 2024
In OpenBSD 7.4 before errata 009, a race condition between pf(4)'s processing of packets and...
Moderate
Unreviewed
CVE-2023-52556
was published
Mar 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlegacy: Clear stale...
High
Unreviewed
CVE-2024-50234
was published
Nov 9, 2024
Insecure temporary file in Tensorflow
High
CVE-2022-23563
was published
for
tensorflow
(pip)
Feb 9, 2022
Time-of-check Time-of-use Race Condition in some Intel(R) processors with Intel(R) ACTM may allow...
High
Unreviewed
CVE-2024-22185
was published
Nov 13, 2024
UsersController.php in Run.codes 1.5.2 and older has a reset password race condition vulnerability.
High
Unreviewed
CVE-2024-48322
was published
Nov 11, 2024
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-49046
was published
Nov 12, 2024
Windows Registry Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43452
was published
Nov 12, 2024
An attacker with local access the to medical office computer can
escalate his Windows user...
High
Unreviewed
CVE-2024-50592
was published
Nov 8, 2024
Memory corruption while handling IOCTL calls in JPEG Encoder driver.
High
Unreviewed
CVE-2024-38406
was published
Nov 4, 2024
Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver.
High
Unreviewed
CVE-2024-38407
was published
Nov 4, 2024
WordOps has TOCTOU race condition
Moderate
CVE-2024-34528
was published
for
wordops
(pip)
May 6, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: dsa: improve shutdown...
Moderate
Unreviewed
CVE-2024-49998
was published
Oct 21, 2024
Waitress has request processing race condition in HTTP pipelining with invalid first request
Critical
CVE-2024-49768
was published
for
waitress
(pip)
Oct 29, 2024
NVIDIA Container Toolkit allows specially crafted container image to create empty files on the host file system
Moderate
CVE-2024-0133
was published
for
github.com/NVIDIA/nvidia-container-toolkit
(Go)
Oct 29, 2024
Duplicate Advisory: NVIDIA Container Toolkit allows specially crafted container image to create empty files on the host file system
Moderate
GHSA-g4pj-mx9f-m2mh
was published
for
github.com/NVIDIA/nvidia-container-toolkit
(Go)
Sep 26, 2024
•
withdrawn
NVIDIA Container Toolkit contains a Time-of-check Time-of-Use (TOCTOU) vulnerability
Critical
CVE-2024-0132
was published
for
github.com/NVIDIA/nvidia-container-toolkit
(Go)
Oct 29, 2024
Duplicate Advisory: NVIDIA Container Toolkit contains a Time-of-check Time-of-Use (TOCTOU) vulnerability
Critical
GHSA-536j-xxhg-6pgg
was published
for
github.com/NVIDIA/nvidia-container-toolkit
(Go)
Sep 26, 2024
•
withdrawn
In deletefiles in FDUPES before 2.2.0, a TOCTOU race condition allows arbitrary file deletion via...
Moderate
Unreviewed
CVE-2022-48682
was published
Apr 26, 2024
A vulnerability was discovered in Samsung Mobile Processor Exynos 980, Exynos 990, Exynos 1080,...
Moderate
Unreviewed
CVE-2024-27361
was published
Jul 9, 2024
dxgkrnl.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2...
High
Unreviewed
CVE-2013-3888
was published
May 13, 2022
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in the AgentD process of...
High
Unreviewed
CVE-2024-47494
was published
Oct 11, 2024
Magento Open Source Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability
Moderate
CVE-2024-45120
was published
for
magento/community-edition
(Composer)
Oct 10, 2024
Wasmtime race condition could lead to WebAssembly control-flow integrity and type safety violations
Low
CVE-2024-47813
was published
for
wasmtime
(Rust)
Oct 9, 2024
ProTip!
Advisories are also available from the
GraphQL API