Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
30
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,683
NuGet
650
pip
3,299
Pub
11
RubyGems
878
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

56 advisories

Loading
The login verification can be bypassed by using the problem that the time is not synchronized... High Unreviewed
CVE-2020-14098 was published May 24, 2022
An improper synchronization logic in Samsung Email prior to version 6.1.41.0 can leak messages in... Moderate Unreviewed
CVE-2021-25376 was published May 24, 2022
In the standard library in Rust before 1.29.0, there is weak synchronization in the Arc::get_mut... Moderate Unreviewed
CVE-2018-25008 was published May 24, 2022
Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions... High Unreviewed
CVE-2021-20592 was published May 24, 2022
Incorrect Synchronization in GitHub repository polonel/trudesk prior to 1.2.3. High Unreviewed
CVE-2022-1931 was published Jun 1, 2022
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or... High Unreviewed
CVE-2022-2962 was published Sep 14, 2022
In isp, there is a possible use after free due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2022-26452 was published Oct 8, 2022
In vdec fmt, there is a possible use after free due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2022-26473 was published Oct 8, 2022
A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by... High Unreviewed
CVE-2022-3565 was published Oct 18, 2022
In vcu, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32613 was published Nov 9, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32612 was published Nov 9, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32610 was published Nov 9, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32609 was published Nov 9, 2022
In disp, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32648 was published Jan 3, 2023
In vow, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32644 was published Jan 3, 2023
In vow, there is a possible information disclosure due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-32645 was published Jan 3, 2023
Western Digital has identified a weakness in the UFS standard that could result in a security... High Unreviewed
CVE-2022-23005 was published Jan 24, 2023
In ccd, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32643 was published Feb 6, 2023
In ccd, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32642 was published Feb 6, 2023
In gpu, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20611 was published Feb 6, 2023
In ccu, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20607 was published Feb 6, 2023
In display drm, there is a possible memory corruption due to a race condition. This could lead to... Moderate Unreviewed
CVE-2023-20610 was published Feb 6, 2023
In adsp, there is a possible double free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20625 was published Mar 7, 2023
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-28229 was published Apr 11, 2023
Grafana Missing Synchronization vulnerability High
CVE-2023-2801 was published for github.com/grafana/grafana (Go) Jun 6, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database