GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
20 advisories
Filter by severity
Potential proxy IP restriction bypass in Kubernetes
Low
CVE-2020-8562
was published
for
k8s.io/kubernetes
(Go)
Feb 2, 2022
Time-of-check Time-of-use (TOCTOU) Race Condition in chownr
Low
CVE-2017-18869
was published
for
chownr
(npm)
Feb 10, 2022
Dell PowerScale OneFS, versions 8.2.2-9.3.x, contain a time-of-check-to-time-of-use vulnerability...
Low
Unreviewed
CVE-2022-24413
was published
Apr 13, 2022
shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees
Low
Unreviewed
CVE-2013-4235
was published
May 5, 2022
A security feature bypass exists when Device Guard incorrectly validates an untrusted file, aka ...
Low
Unreviewed
CVE-2018-0966
was published
May 13, 2022
A security feature bypass exists when Device Guard incorrectly validates an untrusted file, aka ...
Low
Unreviewed
CVE-2018-8449
was published
May 13, 2022
In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of...
Low
Unreviewed
CVE-2020-0003
was published
May 24, 2022
A Race Condition Enabling Link Following vulnerability in the cron job shipped with texlive...
Low
Unreviewed
CVE-2020-8017
was published
May 24, 2022
Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport...
Low
Unreviewed
CVE-2020-8833
was published
May 24, 2022
CISOfy Lynis before 3.0.0 has Incorrect Access Control because of a TOCTOU race condition. The...
Low
Unreviewed
CVE-2020-13882
was published
May 24, 2022
etcd vulnerable to TOCTOU of gateway endpoint authentication
Low
GHSA-h8g9-6gvh-5mrc
was published
for
go.etcd.io/etcd/v3
(Go)
Oct 6, 2022
Unauth. Race Condition vulnerability in WP ULike Plugin <= 4.6.4 on WordPress allows attackers to...
Low
Unreviewed
CVE-2022-45842
was published
Nov 30, 2022
Race Condition Enabling Link Following and Time-of-check Time-of-use (TOCTOU) Race Condition in remove_dir_all
Low
GHSA-mc8h-8q98-g5hr
was published
for
remove_dir_all
(Rust)
Feb 24, 2023
topgrade Time-of-check Time-of-use (TOCTOU) Race Condition in remove_dir_all
Low
GHSA-f2wx-xjfw-xjv6
was published
for
topgrade
(Rust)
Jul 17, 2023
External service lookups for a number of protocols were vulnerable to a time-of-check/time-of-use...
Low
Unreviewed
CVE-2023-26438
was published
Aug 2, 2023
he vulnerability is to delete arbitrary files in LGInstallService ("com.lge.lginstallservies")...
Low
Unreviewed
CVE-2023-44128
was published
Sep 27, 2023
A time-of-check to time-of-use (TOCTOU) bug in handling of IOCTL (input/output control) requests....
Low
Unreviewed
CVE-2023-5760
was published
Nov 8, 2023
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in YetAnotherStarsRating.Com YASR...
Low
Unreviewed
CVE-2023-37867
was published
Nov 30, 2023
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on...
Low
Unreviewed
CVE-2023-6690
was published
Dec 21, 2023
Wasmtime race condition could lead to WebAssembly control-flow integrity and type safety violations
Low
CVE-2024-47813
was published
for
wasmtime
(Rust)
Oct 9, 2024
ProTip!
Advisories are also available from the
GraphQL API