Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

329 advisories

Loading
Potential proxy IP restriction bypass in Kubernetes Low
CVE-2020-8562 was published for k8s.io/kubernetes (Go) Feb 2, 2022
enj
Apache StreamPipes potentially allows creation of multiple identical accounts Moderate
CVE-2024-30471 was published for org.apache.streampipes:streampipes-parent (Maven) Jul 17, 2024
Path traversal in Team Chat for some Zoom Workplace Apps and SDKs for Windows may allow an... Moderate Unreviewed
CVE-2024-39826 was published Jul 15, 2024
Race condition in the installer for some Zoom Apps and SDKs for Windows before version 6.0.0 may... High Unreviewed
CVE-2024-27238 was published Jul 15, 2024
Race condition in the installer for Zoom Workplace App for Windows and Zoom Rooms App for Windows... Moderate Unreviewed
CVE-2024-39821 was published Jul 15, 2024
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x... High Unreviewed
CVE-2024-39936 was published Jul 4, 2024
OpenStack Storlets arbitrary code execution vulnerability High
CVE-2024-28717 was published for storlets (pip) Apr 22, 2024
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2024-36304 was published Jun 11, 2024
An issue was discovered in Alcatel-Lucent ALE NOE deskphones through 86x8_NOE-R300.1.40.12.4180... High Unreviewed
CVE-2024-29149 was published May 7, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24993 was published Apr 19, 2024
A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows... High Unreviewed
CVE-2024-24995 was published Apr 19, 2024
Dell PowerEdge Server BIOS contains an TOCTOU race condition vulnerability. A local low... Moderate Unreviewed
CVE-2024-0171 was published Jun 25, 2024
CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists that could cause... Moderate Unreviewed
CVE-2024-5558 was published Jun 12, 2024
Windows Perception Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-35265 was published Jun 11, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30099 was published Jun 11, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30084 was published Jun 11, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30088 was published Jun 11, 2024
Windows Print Spooler Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21433 was published Mar 12, 2024
NuGet Client Remote Code Execution Vulnerability High
CVE-2023-29337 was published for Microsoft.Build.NuGetSdkResolver (NuGet) Jun 14, 2023
Podman Time-of-check Time-of-use (TOCTOU) Race Condition Moderate
CVE-2023-0778 was published for github.com/containers/podman/v4 (Go) Mar 27, 2023
A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus... High Unreviewed
CVE-2024-3292 was published May 17, 2024
A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus... High Unreviewed
CVE-2024-3290 was published May 17, 2024
Time-of-check Time-of-use race condition in Intel(R) Neural Compressor software before version 2... Moderate Unreviewed
CVE-2024-21792 was published May 16, 2024
A local attacker with low... High Unreviewed
CVE-2024-28137 was published May 14, 2024
A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically... Moderate Unreviewed
CVE-2024-2913 was published May 7, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database