Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
45
Go
3,248
Maven
5,000+
npm
5,000+
NuGet
867
pip
4,513
Pub
12
RubyGems
997
Rust
1,189
Swift
51
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

229 advisories

Loading
Memory corruption in Trusted Execution Environment while deinitializing an object used for... High Unreviewed
CVE-2023-33046 was published Feb 6, 2024
Time-of-check time-of-use race condition in the WheaERST SMM module for some Intel(R) reference... High Unreviewed
CVE-2025-20028 was published Mar 11, 2026
If a legitimate user confirms a self-update prompt or initiate an installation of a CODESYS... High Unreviewed
CVE-2026-2364 was published Mar 10, 2026
Avira Internet Security contains a time-of-check time-of-use (TOCTOU) vulnerability in the... High Unreviewed
CVE-2026-27750 was published Mar 5, 2026
A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow... High Unreviewed
CVE-2023-31324 was published Feb 11, 2026
A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow... High Unreviewed
CVE-2023-20548 was published Feb 11, 2026
Anti-tampering protection of the Zscaler Client Connector can be bypassed under certain... High Unreviewed
CVE-2024-23463 was published Apr 30, 2024
Local privilege escalation vulnerability via insecure temporary batch file execution in ESET... High Unreviewed
CVE-2025-13818 was published Feb 6, 2026
Intego Log Reporter, a macOS diagnostic utility bundled with Intego security products that... High Unreviewed
CVE-2026-26224 was published Feb 13, 2026
Time-of-check time-of-use (toctou) race condition in Windows HTTP.sys allows an authorized... High Unreviewed
CVE-2026-21240 was published Feb 10, 2026
Time-of-check time-of-use (toctou) race condition in Windows Installer allows an authorized... High Unreviewed
CVE-2026-20816 was published Jan 13, 2026
Time-of-check time-of-use (toctou) race condition in Windows Ancillary Function Driver for... High Unreviewed
CVE-2026-20831 was published Jan 13, 2026
In the Linux kernel, the following vulnerability has been resolved: posix-cpu-timers: fix race... High Unreviewed
CVE-2025-38352 was published Jul 22, 2025
A local privilege escalation vulnerability exists in SevenCs ORCA G2 2.0.1.35 (EC2007 Kernel v5... High Unreviewed
CVE-2025-61037 was published Dec 31, 2025
IBM Concert 1.0.0 through 2.1.0 could allow a local user to escalate their privileges due to a... High Unreviewed
CVE-2025-64645 was published Dec 26, 2025
BullWall Server Intrusion Protection services are initialized after login services. An... High Unreviewed
CVE-2025-62004 was published Dec 18, 2025
BullWall Server Intrusion Protection has a noticeable delay before the MFA check when connecting... High Unreviewed
CVE-2025-62003 was published Dec 18, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.4 prior to 18.4.5,... High Unreviewed
CVE-2024-9183 was published Dec 5, 2025
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x... High Unreviewed
CVE-2024-39936 was published Jul 4, 2024
Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware... High Unreviewed
CVE-2025-58407 was published Nov 17, 2025
Nagios XI versions prior to 2011R1.9 contain privilege escalation vulnerabilities in the scripts... High Unreviewed
CVE-2011-10035 was published Oct 31, 2025
OpenSSH 9.5 through 9.7 before 9.8 sometimes allows timing attacks against echo-off password... High Unreviewed
CVE-2024-39894 was published Jul 2, 2024
In the Linux kernel, the following vulnerability has been resolved: exec: Fix ToCToU between... High Unreviewed
CVE-2024-43882 was published Aug 21, 2024
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlegacy: Clear stale... High Unreviewed
CVE-2024-50234 was published Nov 9, 2024
An attacker with local access the to medical office computer can escalate his Windows user... High Unreviewed
CVE-2024-50592 was published Nov 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database