Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,984
Maven
5,000+
npm
3,701
NuGet
657
pip
3,325
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

332 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: md: Don't ignore read-only... Moderate Unreviewed
CVE-2024-26757 was published Apr 3, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2024-20966 was published Feb 17, 2024
Improper resource management in firmware of some Solidigm DC Products may allow an attacker to... Moderate Unreviewed
CVE-2024-47972 was published Oct 7, 2024
A vulnerability in Node.js HTTP servers allows an attacker to send a specially crafted HTTP... High Unreviewed
CVE-2024-22019 was published Feb 20, 2024
An issue was discovered in Ollama before 0.1.34. The CreateModelHandler function uses os.Open to... High Unreviewed
CVE-2024-39721 was published Oct 31, 2024
A vulnerability in Node.js has been identified, allowing for a Denial of Service (DoS) attack... Moderate Unreviewed
CVE-2024-22025 was published Mar 19, 2024
Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to... Moderate Unreviewed
CVE-2024-22105 was published Jul 2, 2024
A website configured to initiate a specially crafted WebTransport session could crash the Firefox... High Unreviewed
CVE-2024-9399 was published Oct 1, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.4.... Moderate Unreviewed
CVE-2024-23248 was published Mar 8, 2024
Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.7.0 allows local attackers to... Moderate Unreviewed
CVE-2024-25087 was published Jul 2, 2024
An issue was discovered in WibuKey64.sys in WIBU-SYSTEMS WibuKey before v6.70 and fixed in v.6.70... Moderate Unreviewed
CVE-2024-45182 was published Sep 12, 2024
Salt vulnerable to denial of service Moderate
CVE-2023-20897 was published for salt (pip) Sep 5, 2023
Pyopenssl Incorrect Memory Management High
CVE-2018-1000808 was published for pyopenssl (pip) Oct 10, 2018
An incorrect permissions vulnerability was reported in the Lenovo App Store app that could allow... Moderate Unreviewed
CVE-2023-6450 was published Jan 19, 2024
When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request... Moderate Unreviewed
CVE-2023-45802 was published Oct 23, 2023
A vulnerability, which was classified as problematic, was found in Contemporary Control System... Moderate Unreviewed
CVE-2024-9787 was published Oct 10, 2024
Zemana AntiLogger v2.74.204.664 is vulnerable to a Memory Information Leak vulnerability by... Moderate Unreviewed
CVE-2024-2180 was published Mar 15, 2024
Bkav Home v7816, build 2403161130 is vulnerable to a Memory Information Leak vulnerability by... Moderate Unreviewed
CVE-2024-2760 was published Apr 23, 2024
RMQTT Broker 0.4.0 allows remote attackers to cause a Denial of Service (daemon crash) via a... High Unreviewed
CVE-2024-36856 was published Jun 12, 2024
A vulnerability was found in LimeSurvey 6.3.0-231016 and classified as problematic. Affected by... Moderate Unreviewed
CVE-2024-7887 was published Aug 17, 2024
A res_pjsip_session crash was discovered in Asterisk Open Source 13.x before 13.37.1, 16.x before... Moderate Unreviewed
CVE-2020-28327 was published May 24, 2022
There exists a vulnerability in Quickshare/Nearby where an attacker can force the a victim to... Moderate Unreviewed
CVE-2024-38271 was published Jun 26, 2024
The 'control' in Parrot ANAFI USA firmware 1.10.4 does not check the MAV_MISSION_TYPE(0, 1, 2,... High Unreviewed
CVE-2024-33844 was published May 3, 2024
SeaCMS 12.9 has a file deletion vulnerability via admin_template.php. Critical Unreviewed
CVE-2024-31611 was published Jun 10, 2024
A bug exists in the API, mesh_node_power_off(), which fails to copy the contents of the Replay... Moderate Unreviewed
CVE-2024-4013 was published Jun 7, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database