Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
57
GitHub Actions
50
Go
3,767
Maven
5,000+
npm
5,000+
NuGet
937
pip
4,999
Pub
13
RubyGems
1,058
Rust
1,347
Swift
54
Unreviewed advisories
All unreviewed
5,000+

62 advisories

Loading
Mezo: ERC-20 bridgeOut burn can be erased by a stale StateDB overwrite leading to full L1 bridge drain High
GHSA-6447-269v-g68m was published for github.com/mezo-org/mezod (Go) May 6, 2026
DeltaXV Credited to DeltaXV
OliveTin has unauthenticated DoS via concurrent map writes in OAuth2 state handling High
CVE-2026-28789 was published for github.com/OliveTin/OliveTin (Go) Mar 2, 2026
kule500 Credited to kule500
Improper synchronization in the firmware for some Intel(R) TDX may allow a privileged user to... Low Unreviewed
CVE-2025-22853 was published Aug 12, 2025
FISCO BCOS 3.11.0 has an issue with synchronization of the transaction pool that can, for example... Moderate Unreviewed
CVE-2024-58131 was published Apr 7, 2025
Vyper has a double eval in For List Iter Low
CVE-2025-27104 was published for vyper (pip) Feb 21, 2025
An information disclosure issue has been discovered in GitLab EE affecting all versions starting... Moderate Unreviewed
CVE-2024-4278 was published Sep 26, 2024
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS)... High Unreviewed
CVE-2024-7409 was published Aug 5, 2024
A Missing Synchronization vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks... Moderate Unreviewed
CVE-2024-30387 was published Apr 12, 2024
Evmos transaction execution not accounting for all state transition after interaction with precompiles Critical
CVE-2024-32644 was published for github.com/evmos/evmos/v16 (Go) Apr 10, 2024
iczc Credited to iczc
In the Linux kernel, the following vulnerability has been resolved: tracing: Restructure... Moderate Unreviewed
CVE-2021-46939 was published Feb 27, 2024
An issue exists in SoftIron HyperCloud where drive caddy removal and reinsertion without a reboot... High Unreviewed
CVE-2023-45084 was published Dec 5, 2023
A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset... Moderate Unreviewed
CVE-2023-5088 was published Nov 3, 2023
Grafana Missing Synchronization vulnerability High
CVE-2023-2801 was published for github.com/grafana/grafana (Go) Jun 6, 2023
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-28229 was published Apr 11, 2023
In adsp, there is a possible double free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20625 was published Mar 7, 2023
In gpu, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20611 was published Feb 6, 2023
In display drm, there is a possible memory corruption due to a race condition. This could lead to... Moderate Unreviewed
CVE-2023-20610 was published Feb 6, 2023
In ccu, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20607 was published Feb 6, 2023
In ccd, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32642 was published Feb 6, 2023
In ccd, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32643 was published Feb 6, 2023
Western Digital has identified a weakness in the UFS standard that could result in a security... High Unreviewed
CVE-2022-23005 was published Jan 24, 2023
In disp, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32648 was published Jan 3, 2023
In vow, there is a possible information disclosure due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-32645 was published Jan 3, 2023
In vow, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32644 was published Jan 3, 2023
In vcu, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32613 was published Nov 9, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database