GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
166 advisories
Filter by severity
IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, 9.4 CD, IBM MQ Appliance 9.3 LTS, 9.3 CD, 9.4...
Moderate
Unreviewed
CVE-2024-51470
was published
Dec 18, 2024
Out-of-bounds read vulnerability in the M3U8 module
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-54116
was published
Dec 12, 2024
Out-of-bounds access vulnerability in playback in the DASH module
Impact: Successful exploitation...
Moderate
Unreviewed
CVE-2024-54114
was published
Dec 12, 2024
Out-of-bounds read vulnerability in the DASH module
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-54115
was published
Dec 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: Fix the missing...
Moderate
Unreviewed
CVE-2024-50284
was published
Nov 19, 2024
vmir e8117 was discovered to contain a segmentation violation via the export_function function at...
Moderate
Unreviewed
CVE-2024-35427
was published
Nov 9, 2024
vmir e8117 was discovered to contain a segmentation violation via the import_function function at...
Moderate
Unreviewed
CVE-2024-35424
was published
Nov 9, 2024
vmir e8117 was discovered to contain a segmentation violation via the wasm_parse_block function...
Moderate
Unreviewed
CVE-2024-35421
was published
Nov 9, 2024
In the Linux kernel, the following vulnerability has been resolved:
pinctrl: ocelot: fix system...
Moderate
Unreviewed
CVE-2024-50196
was published
Nov 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
posix-clock: Fix missing...
Moderate
Unreviewed
CVE-2024-50195
was published
Nov 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
virtio_pmem: Check device...
Moderate
Unreviewed
CVE-2024-50184
was published
Nov 8, 2024
loona-hpack Panic Vulnerability
Moderate
CVE-2024-51502
was published
for
loona-hpack
(Rust)
Nov 4, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An...
Moderate
Unreviewed
CVE-2024-44174
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 18.1 and iPadOS 18.1. An...
Moderate
Unreviewed
CVE-2024-44235
was published
Oct 28, 2024
An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser...
Moderate
Unreviewed
CVE-2024-50602
was published
Oct 27, 2024
IBM WebSphere Application Server 8.5 is vulnerable to a denial of service, under certain...
Moderate
Unreviewed
CVE-2024-45085
was published
Oct 16, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol...
Moderate
Unreviewed
CVE-2024-47507
was published
Oct 11, 2024
A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows...
Moderate
Unreviewed
CVE-2024-9469
was published
Oct 9, 2024
Improper Check for Unusual or Exceptional Conditions vulnerability in Webroot SecureAnywhere -...
Moderate
Unreviewed
CVE-2024-7826
was published
Oct 3, 2024
A vulnerability in the ClamD service module of Clam AntiVirus (ClamAV) versions 1.4.0, 1.3.2 and...
Moderate
Unreviewed
CVE-2024-20506
was published
Sep 5, 2024
Mattermost versions 9.9.x <= 9.9.1, 9.5.x <= 9.5.7, 9.10.x <= 9.10.0, 9.8.x <= 9.8.2 fail to...
Moderate
Unreviewed
CVE-2024-42411
was published
Aug 22, 2024
Improper conditions check in Linux kernel mode driver for some Intel(R) Ethernet Network...
Moderate
Unreviewed
CVE-2024-21806
was published
Aug 14, 2024
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an...
Moderate
Unreviewed
CVE-2024-7006
was published
Aug 12, 2024
Mattermost allows a remote actor to permanently delete local data by abusing dangerous error handling
Moderate
CVE-2024-39832
was published
for
github.com/mattermost/mattermost/server/v8
(Go)
Aug 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
ice: Fix improper extts...
Moderate
Unreviewed
CVE-2024-42139
was published
Jul 30, 2024
ProTip!
Advisories are also available from the
GraphQL API