Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

17 advisories

Loading
Multiple Pimax products accept WebSocket connections from unintended endpoints. If this... High Unreviewed
CVE-2024-41889 was published Aug 5, 2024
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper... Moderate Unreviewed
CVE-2024-39537 was published Jul 11, 2024
In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM... High Unreviewed
CVE-2024-6222 was published Jul 9, 2024
The interactive service in OpenVPN 2.6.9 and earlier allows the OpenVPN service pipe to be... High Unreviewed
CVE-2024-24974 was published Jul 8, 2024
Improper restriction of communication channel to intended endpoints issue exists in Ricoh... Moderate Unreviewed
CVE-2024-36252 was published Jun 19, 2024
Mullvad VPN through 2024.1 on Android does not set a DNS server in the blocking state (after a... High Unreviewed
CVE-2024-34446 was published May 3, 2024
Dell OS10 Networking Switches running 10.5.2.x and above contain a vulnerability with zeroMQ... Critical Unreviewed
CVE-2023-28078 was published Feb 15, 2024
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the... Moderate Unreviewed
CVE-2023-44195 was published Oct 13, 2023
NVIDIA Jetson contains a vulnerability in CBoot, where the PCIe controller is initialized... Moderate Unreviewed
CVE-2023-25518 was published Jun 23, 2023
NVIDIA Jetson contains a vulnerability in CBoot, where the PCIe controller is initialized... High Unreviewed
CVE-2023-25515 was published Jun 23, 2023
Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea... Moderate Unreviewed
CVE-2022-38125 was published Apr 19, 2023
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the... High Unreviewed
CVE-2023-28971 was published Apr 18, 2023
The IP filter in ABAP Platform and SAP Web Dispatcher - versions WEBDISP 7.85, 7.89, KERNEL 7.85,... Moderate Unreviewed
CVE-2023-29108 was published Apr 11, 2023
coreDNS vulnerable to Improper Restriction of Communication Channel to Intended Endpoints Moderate
CVE-2022-2835 was published for github.com/coredns/coredns (Go) Mar 3, 2023
coreDNS vulnerable to Improper Restriction of Communication Channel to Intended Endpoints Moderate
CVE-2022-2837 was published for github.com/coredns/coredns (Go) Mar 3, 2023
chrisbloom7
An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be... Moderate Unreviewed
CVE-2022-2663 was published Sep 2, 2022
This issue affects: Secomea GateManager All versions prior to 9.6. Improper Check of host header... Moderate Unreviewed
CVE-2021-32004 was published Nov 23, 2021
ProTip! Advisories are also available from the GraphQL API