Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

60 advisories

Loading
Improper synchronization in the firmware for some Intel(R) TDX may allow a privileged user to... Low Unreviewed
CVE-2025-22853 was published Aug 12, 2025
Improper locking in the Power Management Controller (PMC) for some Intel Chipset firmware before... Moderate Unreviewed
CVE-2021-0147 was published Feb 11, 2022
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS)... High Unreviewed
CVE-2024-7409 was published Aug 5, 2024
In the Linux kernel, the following vulnerability has been resolved: tracing: Restructure... Moderate Unreviewed
CVE-2021-46939 was published Feb 27, 2024
In vow, there is a possible information disclosure due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-32645 was published Jan 3, 2023
Vyper has a double eval in For List Iter Low
CVE-2025-27104 was published for vyper (pip) Feb 21, 2025
FISCO BCOS 3.11.0 has an issue with synchronization of the transaction pool that can, for example... Moderate Unreviewed
CVE-2024-58131 was published Apr 7, 2025
Grafana Missing Synchronization vulnerability High
CVE-2023-2801 was published for github.com/grafana/grafana (Go) Jun 6, 2023
A Missing Synchronization vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks... Moderate Unreviewed
CVE-2024-30387 was published Apr 12, 2024
Deadlock in mutually recursive `tf.function` objects Moderate
CVE-2021-41213 was published for tensorflow (pip) Nov 10, 2021
An information disclosure issue has been discovered in GitLab EE affecting all versions starting... Moderate Unreviewed
CVE-2024-4278 was published Sep 26, 2024
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-28229 was published Apr 11, 2023
A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset... Moderate Unreviewed
CVE-2023-5088 was published Nov 3, 2023
Evmos transaction execution not accounting for all state transition after interaction with precompiles Critical
CVE-2024-32644 was published for github.com/evmos/evmos/v16 (Go) Apr 10, 2024
iczc
In the standard library in Rust before 1.29.0, there is weak synchronization in the Arc::get_mut... Moderate Unreviewed
CVE-2018-25008 was published May 24, 2022
An issue exists in SoftIron HyperCloud where drive caddy removal and reinsertion without a reboot... High Unreviewed
CVE-2023-45084 was published Dec 5, 2023
A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by... High Unreviewed
CVE-2022-3565 was published Oct 18, 2022
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or... High Unreviewed
CVE-2022-2962 was published Sep 14, 2022
Wrong memory orderings violates mutual exclusion in spin High
CVE-2019-16137 was published for spin (Rust) Aug 25, 2021
Data races in hashconsing High
CVE-2020-36215 was published for hashconsing (Rust) Aug 25, 2021
Data race in va-ts Moderate
CVE-2020-36220 was published for va-ts (Rust) Aug 25, 2021
Data races in rusb High
CVE-2020-36206 was published for rusb (Rust) Aug 25, 2021
Data races in multiqueue2 Moderate
CVE-2020-36214 was published for multiqueue2 (Rust) Aug 25, 2021
Data races in late-static High
CVE-2020-36209 was published for late-static (Rust) Aug 25, 2021
Data race in eventio Moderate
CVE-2020-36216 was published for eventio (Rust) Aug 25, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database