GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
36 advisories
Filter by severity
Improper locking in the Power Management Controller (PMC) for some Intel Chipset firmware before...
Moderate
Unreviewed
CVE-2021-0147
was published
Feb 11, 2022
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface...
High
Unreviewed
CVE-2016-8368
was published
May 13, 2022
An exploitable denial-of-service vulnerability exists in the XML_UploadFile Wi-Fi command of the...
High
Unreviewed
CVE-2018-4027
was published
May 24, 2022
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of...
Moderate
Unreviewed
CVE-2019-17344
was published
May 24, 2022
In FreeRADIUS 3.0.x before 3.0.20, the EAP-pwd module used a global OpenSSL BN_CTX instance to...
Moderate
Unreviewed
CVE-2019-17185
was published
May 24, 2022
An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers...
Moderate
Unreviewed
CVE-2020-12769
was published
May 24, 2022
A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an...
Moderate
Unreviewed
CVE-2020-3471
was published
May 24, 2022
The login verification can be bypassed by using the problem that the time is not synchronized...
High
Unreviewed
CVE-2020-14098
was published
May 24, 2022
An improper synchronization logic in Samsung Email prior to version 6.1.41.0 can leak messages in...
Moderate
Unreviewed
CVE-2021-25376
was published
May 24, 2022
In the standard library in Rust before 1.29.0, there is weak synchronization in the Arc::get_mut...
Moderate
Unreviewed
CVE-2018-25008
was published
May 24, 2022
Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions...
High
Unreviewed
CVE-2021-20592
was published
May 24, 2022
Incorrect Synchronization in GitHub repository polonel/trudesk prior to 1.2.3.
High
Unreviewed
CVE-2022-1931
was published
Jun 1, 2022
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or...
High
Unreviewed
CVE-2022-2962
was published
Sep 14, 2022
In vdec fmt, there is a possible use after free due to improper locking. This could lead to local...
Moderate
Unreviewed
CVE-2022-26473
was published
Oct 8, 2022
In isp, there is a possible use after free due to improper locking. This could lead to local...
Moderate
Unreviewed
CVE-2022-26452
was published
Oct 8, 2022
A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by...
High
Unreviewed
CVE-2022-3565
was published
Oct 18, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32612
was published
Nov 9, 2022
In vcu, there is a possible memory corruption due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32613
was published
Nov 9, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32610
was published
Nov 9, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32609
was published
Nov 9, 2022
In vow, there is a possible information disclosure due to a race condition. This could lead to...
Moderate
Unreviewed
CVE-2022-32645
was published
Jan 3, 2023
In vow, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32644
was published
Jan 3, 2023
In disp, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32648
was published
Jan 3, 2023
Western Digital has identified a weakness in the UFS standard that could result in a security...
High
Unreviewed
CVE-2022-23005
was published
Jan 24, 2023
In ccd, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2022-32643
was published
Feb 6, 2023
ProTip!
Advisories are also available from the
GraphQL API