GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
68 advisories
Filter by severity
Talos vulnerable dependency due to race condition in Linux kernel's IP framework XFRM
High
GHSA-34vw-m4rh-r36p
was published
for
github.com/talos-systems/talos
(Go)
Sep 16, 2022
Data race in `Iter` and `IterMut`
High
GHSA-9hpw-r23r-xgm5
was published
for
thread_local
(Rust)
Jun 17, 2022
Data race in ruspiro-singleton
High
CVE-2020-36435
was published
for
ruspiro-singleton
(Rust)
Aug 25, 2021
October CMS upload process vulnerable to RCE via Race Condition
High
CVE-2022-24800
was published
for
october/system
(Composer)
Jul 13, 2022
Apache Guacamole Race Condition vulnerability
High
CVE-2017-3158
was published
for
org.apache.guacamole:guacamole-common
(Maven)
May 14, 2022
crossbeam-utils Race Condition vulnerability
High
CVE-2022-23639
was published
for
crossbeam-utils
(Rust)
Feb 16, 2022
Improper synchronization in Apache Netbeans HTML/Java API
High
CVE-2020-17534
was published
for
org.netbeans.html:pom
(Maven)
Feb 9, 2022
Improper Synchronization and Race Condition in vm-memory
High
CVE-2020-13759
was published
for
vm-memory
(Rust)
Aug 25, 2021
mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs
High
CVE-2021-30465
was published
for
github.com/opencontainers/runc
(Go)
May 25, 2021
Deno is vulnerable to race condition via interactive permission prompt spoofing
High
CVE-2023-22499
was published
for
deno
(Rust)
Jan 20, 2023
Out-of-bounds Write and Race Condition in metrics-util
High
CVE-2021-45704
was published
for
metrics-util
(Rust)
Jan 6, 2022
ProTip!
Advisories are also available from the
GraphQL API