Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

116 advisories

Loading
Potential arbitrary memory corruption when the qseecom driver updates ion physical addresses in... Moderate Unreviewed
CVE-2020-11230 was published May 24, 2022
Firefox for Android suffered from a time-of-check-time-of-use vulnerability that allowed a... Moderate Unreviewed
CVE-2021-23977 was published May 24, 2022
Time-of-check Time-of-use (TOCTOU) Race Condition in Jenkins Moderate
CVE-2021-21615 was published for org.jenkins-ci.main:jenkins-core (Maven) May 24, 2022
NotMyFault
The Trusted Platform Modules (TPM) reference software may not properly track the number of times... Moderate Unreviewed
CVE-2020-12926 was published May 24, 2022
Trend Micro Antivirus for Mac 2020 (Consumer) contains a race condition vulnerability in the Web... Moderate Unreviewed
CVE-2020-27014 was published May 24, 2022
This issue was addressed with improved checks. This issue is fixed in macOS Catalina 10.15.6. A... Moderate Unreviewed
CVE-2020-9939 was published May 24, 2022
VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202008101-SG, 6.5 before... Moderate Unreviewed
CVE-2020-3981 was published May 24, 2022
A potential vulnerability in the SMI callback function used in the legacy BIOS mode USB drivers... Moderate Unreviewed
CVE-2020-8332 was published May 24, 2022
In SurfaceFlinger, there is a possible use after free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2020-0358 was published May 24, 2022
A TOCTOU mismatch in the NFS client code in the Linux kernel before 5.8.3 could be used by local... Moderate Unreviewed
CVE-2020-25212 was published May 24, 2022
u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to... Moderate Unreviewed
CVE-2020-3619 was published May 24, 2022
u'While processing SMCInvoke asynchronous message header, message count is modified leading to a... Moderate Unreviewed
CVE-2019-14119 was published May 24, 2022
TOCTOU Race Condition vulnerability in apport allows a local attacker to escalate privileges and... Moderate Unreviewed
CVE-2020-15702 was published May 24, 2022
In FreeBSD 12.1-STABLE before r363918, 12.1-RELEASE before p8, 11.4-STABLE before r363919, 11.4... Moderate Unreviewed
CVE-2020-7460 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Moderate Unreviewed
CVE-2020-14677 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Moderate Unreviewed
CVE-2020-14675 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Moderate Unreviewed
CVE-2020-14674 was published May 24, 2022
A time-of-check time-of-use vulnerability in PulseSecureService.exe in Pulse Secure Client... Moderate Unreviewed
CVE-2020-13162 was published May 24, 2022
VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior) and VMware... Moderate Unreviewed
CVE-2020-3957 was published May 24, 2022
A Race Condition Enabling Link Following vulnerability in the packaging of texlive-filesystem of... Moderate Unreviewed
CVE-2020-8016 was published May 24, 2022
Sander Bos discovered a time of check to time of use (TOCTTOU) vulnerability in apport that... Moderate Unreviewed
CVE-2019-11482 was published May 24, 2022
Race condition between the camera functions due to lack of resource lock which will lead to... Moderate Unreviewed
CVE-2019-10494 was published May 24, 2022
The malware scan function in Total Defense Anti-virus 11.5.2.28 is vulnerable to a TOCTOU bug;... Moderate Unreviewed
CVE-2019-18644 was published May 24, 2022
Microsoft Internet Explorer 7 through 11 allows remote attackers to gain privileges via a crafted... Moderate Unreviewed
CVE-2015-1743 was published May 14, 2022
Device Guard in Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows... Moderate Unreviewed
CVE-2017-11830 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database