GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
97,169 advisories
Filter by severity
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13...
High
Unreviewed
CVE-2024-44167
was published
Sep 17, 2024
This issue was addressed through improved state management. This issue is fixed in iOS 18 and...
High
Unreviewed
CVE-2024-44147
was published
Sep 17, 2024
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS...
High
Unreviewed
CVE-2024-44160
was published
Sep 17, 2024
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia...
High
Unreviewed
CVE-2024-44132
was published
Sep 17, 2024
This issue was addressed by restricting options offered on a locked device. This issue is fixed...
High
Unreviewed
CVE-2024-40852
was published
Sep 17, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An app may...
High
Unreviewed
CVE-2024-40861
was published
Sep 17, 2024
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in...
High
Unreviewed
CVE-2024-40841
was published
Sep 17, 2024
A privacy issue was addressed by removing sensitive data. This issue is fixed in Xcode 16. An...
High
Unreviewed
CVE-2024-40862
was published
Sep 17, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18, macOS...
High
Unreviewed
CVE-2024-27869
was published
Sep 17, 2024
This issue was addressed through improved state management. This issue is fixed in iOS 18 and...
High
Unreviewed
CVE-2024-27874
was published
Sep 17, 2024
The issue was addressed with improved bounds checks. This issue is fixed in iOS 17.7 and iPadOS...
High
Unreviewed
CVE-2024-27879
was published
Sep 17, 2024
A race condition was addressed with improved locking. This issue is fixed in macOS Ventura 13.7,...
High
Unreviewed
CVE-2024-27876
was published
Sep 17, 2024
An Incorrect Access Control vulnerability was found in /music/index.php?page=user_list and /music...
High
Unreviewed
CVE-2024-42798
was published
Sep 16, 2024
The HTTPD binary in multiple ZTE routers has a stack-based buffer overflow vulnerability in...
High
Unreviewed
CVE-2024-45413
was published
Sep 16, 2024
The HTTPD binary in multiple ZTE routers has a local file inclusion vulnerability in session_init...
High
Unreviewed
CVE-2024-45416
was published
Sep 16, 2024
DOMPurify allows tampering by prototype pollution
High
CVE-2024-45801
was published
for
dompurify
(npm)
Sep 16, 2024
A Business Logic vulnerability in Shopkit 1.0 allows an attacker to add products with negative...
High
Unreviewed
CVE-2023-45854
was published
Sep 16, 2024
An issue in TuomoKu SPx-GC v.1.3.0 and before allows a remote attacker to execute arbitrary code...
High
Unreviewed
CVE-2024-44623
was published
Sep 16, 2024
A race condition in UEFI firmware for some Intel(R) processors may allow a privileged user to...
High
Unreviewed
CVE-2023-41833
was published
Sep 16, 2024
Untrusted pointer dereference in UEFI firmware for some Intel(R) reference processors may allow a...
High
Unreviewed
CVE-2023-42772
was published
Sep 16, 2024
Improper access control in UEFI firmware for some Intel(R) Processors may allow a privileged user...
High
Unreviewed
CVE-2023-43626
was published
Sep 16, 2024
Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged...
High
Unreviewed
CVE-2024-21781
was published
Sep 16, 2024
Improper input validation in UEFI firmware error handler for some Intel(R) Processors may allow a...
High
Unreviewed
CVE-2024-21829
was published
Sep 16, 2024
Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged...
High
Unreviewed
CVE-2024-21871
was published
Sep 16, 2024
Race condition in Seamless Firmware Updates for some Intel(R) reference platforms may allow a...
High
Unreviewed
CVE-2024-23599
was published
Sep 16, 2024
ProTip!
Advisories are also available from the
GraphQL API