Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,656
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,200 advisories

Loading
CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and... High Unreviewed
CVE-2024-47850 was published Oct 4, 2024
Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader High
CVE-2024-47554 was published for commons-io:commons-io (Maven) Oct 3, 2024
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x,10.5.3.x, contains an... High Unreviewed
CVE-2024-37125 was published Sep 26, 2024
When multiple devices share resources and one of them is to be passed through to a guest,... High Unreviewed
CVE-2024-31146 was published Sep 25, 2024
Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved... High Unreviewed
CVE-2024-31145 was published Sep 25, 2024
Gladys Assistant before 4.45.1 allows Privilege Escalation (a user changing their own role)... High Unreviewed
CVE-2024-47210 was published Sep 22, 2024
An issue was discovered in Technitium 11.0.2. There is a vulnerability (called BadDNS) in DNS... High Unreviewed
CVE-2023-28451 was published Sep 18, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7,... High Unreviewed
CVE-2024-44169 was published Sep 17, 2024
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS... High Unreviewed
CVE-2024-44160 was published Sep 17, 2024
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... High Unreviewed
CVE-2024-40841 was published Sep 17, 2024
This issue was addressed through improved state management. This issue is fixed in iOS 18 and... High Unreviewed
CVE-2024-27874 was published Sep 17, 2024
DHCP Server Service Denial of Service Vulnerability High Unreviewed
CVE-2024-38236 was published Sep 10, 2024
A vulnerability has been identified in SIMATIC S7-200 SMART CPU CR40 (6ES7288-1CR40-0AA0) (All... High Unreviewed
CVE-2024-43647 was published Sep 10, 2024
Missing connection timeout in Aardvark-dns High
CVE-2024-8418 was published for aardvark-dns (Rust) Sep 4, 2024
Flowise Unauthenticated Denial of Service (DoS) vulnerability High
CVE-2024-8182 was published for flowise (npm) Aug 27, 2024
There is a LOW severity vulnerability affecting CPython, specifically the 'http.cookies' standard... High Unreviewed
CVE-2024-7592 was published Aug 19, 2024
Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the page parameter in... High Unreviewed
CVE-2024-42980 was published Aug 15, 2024
Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the delno parameter in... High Unreviewed
CVE-2024-42981 was published Aug 15, 2024
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the mit_pptpusrpw... High Unreviewed
CVE-2024-42951 was published Aug 15, 2024
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the PPPOEPassword... High Unreviewed
CVE-2024-42943 was published Aug 15, 2024
Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the page parameter in... High Unreviewed
CVE-2024-42969 was published Aug 15, 2024
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the Go parameter in... High Unreviewed
CVE-2024-42950 was published Aug 15, 2024
In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs)... High Unreviewed
CVE-2024-41727 was published Aug 14, 2024
Microsoft Security Advisory CVE-2024-38168 | .NET Denial of Service Vulnerability High
CVE-2024-38168 was published for Microsoft.AspNetCore.App.Runtime.win-arm (NuGet) Aug 13, 2024
A DLL hijacking vulnerability in AMD μProf could allow an attacker to achieve privilege... High Unreviewed
CVE-2023-31348 was published Aug 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database