Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
30
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,299
Pub
11
RubyGems
878
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

631 advisories

Loading
Race Condition in tokio High
CVE-2021-45710 was published for tokio (Rust) Jan 6, 2022
Out-of-bounds Write and Race Condition in metrics-util High
CVE-2021-45704 was published for metrics-util (Rust) Jan 6, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE... High Unreviewed
CVE-2022-21896 was published Jan 12, 2022
Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21879. High Unreviewed
CVE-2022-21881 was published Jan 12, 2022
In init of vendor_graphicbuffer_meta.cpp, there is a possible use after free due to a race... High Unreviewed
CVE-2021-39679 was published Jan 15, 2022
In phTmlNfc_Init and phTmlNfc_CleanUp of phTmlNfc.cc, there is a possible use after free due to a... High Unreviewed
CVE-2021-39629 was published Jan 15, 2022
A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain... High Unreviewed
CVE-2021-4083 was published Jan 19, 2022
Improper synchronization in Apache Netbeans HTML/Java API High
CVE-2020-17534 was published for org.netbeans.html:pom (Maven) Feb 9, 2022
Local privilege escalation due to race condition on application startup. The following products... High Unreviewed
CVE-2022-24114 was published Feb 11, 2022
crossbeam-utils Race Condition vulnerability High
CVE-2022-23639 was published for crossbeam-utils (Rust) Feb 16, 2022
saethlin
A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls... High Unreviewed
CVE-2021-3752 was published Feb 17, 2022
A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos... High Unreviewed
CVE-2020-25719 was published Feb 19, 2022
A race condition existed in the snapd 2.54.2 snap-confine binary when preparing a private mount... High Unreviewed
CVE-2021-44731 was published Feb 19, 2022
.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker... High Unreviewed
CVE-2021-3609 was published Mar 4, 2022
A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found... High Unreviewed
CVE-2021-3640 was published Mar 5, 2022
Windows Update Stack Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-24525 was published Mar 10, 2022
Windows ALPC Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-23283, CVE... High Unreviewed
CVE-2022-24505 was published Mar 10, 2022
Tablet Windows User Interface Application Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-24460 was published Mar 10, 2022
Windows NT OS Kernel Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-23298 was published Mar 10, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE... High Unreviewed
CVE-2022-23288 was published Mar 10, 2022
Windows ALPC Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-23287, CVE... High Unreviewed
CVE-2022-23283 was published Mar 10, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23042 was published Mar 11, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23037 was published Mar 11, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23041 was published Mar 11, 2022
Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates... High Unreviewed
CVE-2022-23039 was published Mar 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database