GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,161
Erlang
30
GitHub Actions
19
Go
1,966
Maven
5,000+
npm
3,694
NuGet
653
pip
3,311
Pub
11
RubyGems
881
Rust
831
Swift
35
Unreviewed advisories
All unreviewed
5,000+
112 advisories
Filter by severity
NVIDIA Container Toolkit allows specially crafted container image to create empty files on the host file system
Moderate
CVE-2024-0133
was published
for
github.com/NVIDIA/nvidia-container-toolkit
(Go)
Oct 29, 2024
Duplicate Advisory: NVIDIA Container Toolkit allows specially crafted container image to create empty files on the host file system
Moderate
GHSA-g4pj-mx9f-m2mh
was published
for
github.com/NVIDIA/nvidia-container-toolkit
(Go)
Sep 26, 2024
•
withdrawn
In deletefiles in FDUPES before 2.2.0, a TOCTOU race condition allows arbitrary file deletion via...
Moderate
Unreviewed
CVE-2022-48682
was published
Apr 26, 2024
A vulnerability was discovered in Samsung Mobile Processor Exynos 980, Exynos 990, Exynos 1080,...
Moderate
Unreviewed
CVE-2024-27361
was published
Jul 9, 2024
Magento Open Source Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability
Moderate
CVE-2024-45120
was published
for
magento/community-edition
(Composer)
Oct 10, 2024
This vulnerability occurs when an attacker exploits a race condition between the time a file is...
Moderate
Unreviewed
CVE-2024-6787
was published
Sep 21, 2024
B2 Command Line Tool TOCTOU application key disclosure
Moderate
CVE-2022-23653
was published
for
b2
(pip)
Feb 24, 2022
b2-sdk-python TOCTOU application key disclosure
Moderate
CVE-2022-23651
was published
for
b2sdk
(pip)
Feb 24, 2022
Apache StreamPipes potentially allows creation of multiple identical accounts
Moderate
CVE-2024-30471
was published
for
org.apache.streampipes:streampipes-parent
(Maven)
Jul 17, 2024
Path traversal in Team Chat for some Zoom Workplace Apps and SDKs for Windows may allow an...
Moderate
Unreviewed
CVE-2024-39826
was published
Jul 15, 2024
Race condition in the installer for Zoom Workplace App for Windows and Zoom Rooms App for Windows...
Moderate
Unreviewed
CVE-2024-39821
was published
Jul 15, 2024
Dell PowerEdge Server BIOS contains an TOCTOU race condition vulnerability. A local low...
Moderate
Unreviewed
CVE-2024-0171
was published
Jun 25, 2024
CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists that could
cause...
Moderate
Unreviewed
CVE-2024-5558
was published
Jun 12, 2024
Podman Time-of-check Time-of-use (TOCTOU) Race Condition
Moderate
CVE-2023-0778
was published
for
github.com/containers/podman/v4
(Go)
Mar 27, 2023
Time-of-check Time-of-use race condition in Intel(R) Neural Compressor software before version 2...
Moderate
Unreviewed
CVE-2024-21792
was published
May 16, 2024
A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically...
Moderate
Unreviewed
CVE-2024-2913
was published
May 7, 2024
Windows Kernel Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-21362
was published
Feb 13, 2024
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on...
Moderate
Unreviewed
CVE-2024-2440
was published
Apr 19, 2024
OpenStack magnum vulnerable to time-of-check to time-of-use (TOCTOU) attack
Moderate
CVE-2024-28718
was published
for
magnum
(pip)
Apr 12, 2024
Time-of-check Time-of-use (TOCTOU) in the
BIOS2PSP command may allow an attacker with a malicious...
Moderate
Unreviewed
CVE-2021-46792
was published
May 9, 2023
Gradio apps vulnerable to timing attacks to guess password
Moderate
CVE-2024-1729
was published
for
gradio
(pip)
Feb 22, 2024
A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM...
Moderate
Unreviewed
CVE-2023-4155
was published
Sep 13, 2023
Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated...
Moderate
Unreviewed
CVE-2023-28075
was published
Aug 16, 2023
In thermal, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20788
was published
Aug 7, 2023
In thermal, there is a possible use after free due to a race condition. This could lead to local...
Moderate
Unreviewed
CVE-2023-20787
was published
Aug 7, 2023
ProTip!
Advisories are also available from the
GraphQL API