GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
161 advisories
Filter by severity
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious...
High
Unreviewed
CVE-2017-0412
was published
May 13, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious...
High
Unreviewed
CVE-2017-0411
was published
May 13, 2022
An elevation of privilege vulnerability in the NVIDIA video driver could enable a local malicious...
High
Unreviewed
CVE-2017-0331
was published
May 13, 2022
A remote code execution vulnerability in the Android media framework (libstagefright). Product:...
High
Unreviewed
CVE-2017-0756
was published
May 13, 2022
An ability to process crash dumps under root privileges and inappropriate symlinks handling could...
High
Unreviewed
CVE-2017-15404
was published
May 13, 2022
An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced...
High
Unreviewed
CVE-2018-8584
was published
May 13, 2022
Memory corruption in display due to time-of-check time-of-use of metadata reserved size in...
High
Unreviewed
CVE-2022-33214
was published
Oct 19, 2022
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One Vulnerability Protection...
High
Unreviewed
CVE-2022-41744
was published
Oct 11, 2022
In UsbCoreDxe, tampering with the contents of the USB working buffer using DMA while certain USB...
High
Unreviewed
CVE-2022-30283
was published
Nov 16, 2022
VMware ESXi contains a TOCTOU (Time-of-check Time-of-use) vulnerability that exists in the way...
High
Unreviewed
CVE-2021-22043
was published
Feb 17, 2022
A vulnerability exists in Trend Micro Maximum Security 2022 (17.7) wherein a low-privileged user...
High
Unreviewed
CVE-2022-48191
was published
Jan 20, 2023
JetBrains TeamCity before 2021.2 was vulnerable to a Time-of-check/Time-of-use (TOCTOU) race...
High
Unreviewed
CVE-2022-24335
was published
Feb 26, 2022
DMA transactions which are targeted at input buffers used for the SdMmcDevice software SMI...
High
Unreviewed
CVE-2022-33984
was published
Nov 15, 2022
A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in the BIOS...
High
Unreviewed
CVE-2022-27538
was published
Feb 1, 2023
Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious...
High
Unreviewed
CVE-2022-34398
was published
Feb 1, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32476
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32470
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32469
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32477
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32475
was published
Feb 15, 2023
A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in certain HP...
High
Unreviewed
CVE-2022-43779
was published
Feb 12, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.1 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32954
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32953
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32474
was published
Feb 15, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the...
High
Unreviewed
CVE-2022-32955
was published
Feb 15, 2023
ProTip!
Advisories are also available from the
GraphQL API