Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

45 advisories

Loading
Improper Locking in Apache Tomcat High
CVE-2019-10072 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jun 26, 2019
sunSUNQ
An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series and... High Unreviewed
CVE-2022-22175 was published Jan 20, 2022
Denial of Service in Gitea High
CVE-2020-13246 was published for github.com/go-gitea/gitea (Go) Feb 15, 2022
A Denial of Service vulnerability exists in CORTX-S3 Server as of 11/7/2021 via the... High Unreviewed
CVE-2021-43429 was published Apr 8, 2022
A certain Red Hat patch for net/ipv4/route.c in the Linux kernel 2.6.18 on Red Hat Enterprise... High Unreviewed
CVE-2009-4272 was published May 2, 2022
A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance ... High Unreviewed
CVE-2018-0228 was published May 13, 2022
A vulnerability in the FTP inspection engine of Cisco Firepower Threat Defense (FTD) Software... High Unreviewed
CVE-2018-15390 was published May 13, 2022
The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a... High Unreviewed
CVE-2010-4210 was published May 17, 2022
The coredump implementation in the Linux kernel before 5.0.10 does not use locking or other... High Unreviewed
CVE-2019-11599 was published May 24, 2022
A vulnerability in the logic that handles access control to one of the hardware components in... High Unreviewed
CVE-2019-1649 was published May 24, 2022
HP has identified a security vulnerability with some versions of Workstation BIOS (UEFI Firmware)... High Unreviewed
CVE-2019-6322 was published May 24, 2022
HP has identified a security vulnerability with some versions of Workstation BIOS (UEFI Firmware)... High Unreviewed
CVE-2019-6321 was published May 24, 2022
An issue was discovered in OpenWrt libuci (aka Library for the Unified Configuration Interface)... High Unreviewed
CVE-2019-15513 was published May 24, 2022
In SurfaceFlinger, there is a possible use-after-free due to improper locking. This could lead to... High Unreviewed
CVE-2020-0357 was published May 24, 2022
In binder_release_work of binder.c, there is a possible use-after-free due to improper locking.... High Unreviewed
CVE-2020-0423 was published May 24, 2022
In setUpdatableDriverPath of GpuService.cpp, there is a possible memory corruption due to a... High Unreviewed
CVE-2020-0420 was published May 24, 2022
A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers... High Unreviewed
CVE-2020-29661 was published May 24, 2022
A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9... High Unreviewed
CVE-2020-29660 was published May 24, 2022
A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race... High Unreviewed
CVE-2021-26708 was published May 24, 2022
A race condition was addressed with improved locking. This issue is fixed in macOS Big Sur 11.2,... High Unreviewed
CVE-2021-1782 was published May 24, 2022
In memory management driver, there is a possible memory corruption due to improper locking. This... High Unreviewed
CVE-2021-0529 was published May 24, 2022
A vulnerability in the Common Open Policy Service (COPS) of Cisco IOS XE Software for Cisco cBR-8... High Unreviewed
CVE-2021-1622 was published May 24, 2022
In ccu, there is a possible memory corruption due to improper locking. This could lead to local... High Unreviewed
CVE-2021-0625 was published May 24, 2022
Improper Resource Locking vulnerability in Mitsubishi Electric MELSEC-Q Series Q03UDECPU all... High Unreviewed
CVE-2022-24946 was published Jun 16, 2022
In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking. This... High Unreviewed
CVE-2022-20141 was published Jun 16, 2022
ProTip! Advisories are also available from the GraphQL API