Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,951
Erlang
39
GitHub Actions
38
Go
2,607
Maven
5,000+
npm
4,251
NuGet
757
pip
4,017
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

178 advisories

Loading
A key used in logging.json does not follow the least privilege principle by default and is... Moderate Unreviewed
CVE-2024-3185 was published Apr 23, 2024
An improper access control was identified in the Identity Security Cloud (ISC) message server API... Moderate Unreviewed
CVE-2024-3317 was published May 15, 2024
Improper Validation of Specified Quantity in Input vulnerability in The Events Calendar BookIt... Moderate Unreviewed
CVE-2024-24715 was published May 17, 2024
Improper Validation of Specified Quantity in Input vulnerability in Tips and Tricks HQ WP Express... High Unreviewed
CVE-2024-30527 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sock: Fix not... High Unreviewed
CVE-2024-35963 was published May 20, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix not... High Unreviewed
CVE-2024-35965 was published May 20, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix not... High Unreviewed
CVE-2024-35964 was published May 20, 2024
In the Linux kernel, the following vulnerability has been resolved: mac80211: fix skb length... High Unreviewed
CVE-2021-47251 was published May 21, 2024
A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow... High Unreviewed
CVE-2024-5102 was published Jun 10, 2024
In the Linux kernel, the following vulnerability has been resolved: enic: Validate length of nl... High Unreviewed
CVE-2024-38659 was published Jun 21, 2024
Improper Input Validation vulnerability in ABB 800xA Base. An attacker who successfully exploited... Moderate Unreviewed
CVE-2024-3036 was published Jun 21, 2024
panic on parsing crafted phonenumber inputs Critical
CVE-2024-39697 was published for phonenumber (Rust) Jul 9, 2024
rubdos
Credited to rubdos
A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330... Moderate Unreviewed
CVE-2024-27362 was published Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where... Moderate Unreviewed
CVE-2024-31957 was published Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 850, Exynos 1080, Exynos 2100,... Moderate Unreviewed
CVE-2024-27360 was published Jul 9, 2024
Django vulnerable to denial-of-service attack Moderate
CVE-2024-41991 was published for Django (pip) Aug 7, 2024
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows... Moderate Unreviewed
CVE-2024-6768 was published Aug 12, 2024
Improper input validation in SMU may allow an attacker with privileges and a compromised physical... Low Unreviewed
CVE-2023-31304 was published Aug 13, 2024
Improper input validation in Power Management Firmware (PMFW) may allow an attacker with... Moderate Unreviewed
CVE-2023-31310 was published Aug 13, 2024
NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a... Moderate Unreviewed
CVE-2024-0111 was published Aug 31, 2024
The ctl_report_supported_opcodes function did not sufficiently validate a field provided by... High Unreviewed
CVE-2024-42416 was published Sep 5, 2024
A vulnerability classified as problematic was found in SourceCodester Food Ordering Management... Moderate Unreviewed
CVE-2024-8558 was published Sep 7, 2024
The Eaton Foreseer software provides multiple customizable input fields for the users to... Moderate Unreviewed
CVE-2024-31416 was published Sep 13, 2024
CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS)... Critical Unreviewed
CVE-2024-8887 was published Sep 18, 2024
NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling... Moderate Unreviewed
CVE-2024-8508 was published Oct 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database