Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,747
Erlang
35
GitHub Actions
29
Go
2,321
Maven
5,000+
npm
3,955
NuGet
712
pip
3,736
Pub
12
RubyGems
921
Rust
972
Swift
38
Unreviewed advisories
All unreviewed
5,000+

72 advisories

Loading
Mautic's Predictable Page Indexing Might Lead to Sensitive Data Exposure Moderate
CVE-2025-5257 was published for mautic/core (Composer) May 28, 2025
An Unchecked Input for Loop Condition in RT-Labs P-Net version 1.0.1 or earlier allows an... Moderate Unreviewed
CVE-2025-32399 was published May 7, 2025
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric... Moderate Unreviewed
CVE-2025-3511 was published Apr 25, 2025
GoBGP crashes in the flowspec parser Moderate
CVE-2025-43972 was published for github.com/osrg/gobgp (Go) Apr 21, 2025
GoBGP does not properly check the input length Moderate
CVE-2025-43970 was published for github.com/osrg/gobgp (Go) Apr 21, 2025
On affected platforms running Arista EOS with 802.1X configured, certain conditions may occur... Moderate Unreviewed
CVE-2024-8000 was published Mar 4, 2025
Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds... Moderate Unreviewed
CVE-2023-20508 was published Feb 12, 2025
Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to... Moderate Unreviewed
CVE-2023-20515 was published Feb 12, 2025
Improper handling of invalid nested page table entries in the IOMMU may allow a privileged... Moderate Unreviewed
CVE-2023-20582 was published Feb 12, 2025
In the Linux kernel, the following vulnerability has been resolved: netdevsim: prevent bad user... Moderate Unreviewed
CVE-2024-56716 was published Dec 29, 2024
IBM InfoSphere Information Server 11.7 could allow an authenticated user to GUI to not load or... Moderate Unreviewed
CVE-2024-52901 was published Dec 12, 2024
Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote... Moderate Unreviewed
CVE-2024-9369 was published Nov 27, 2024
An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows... Moderate Unreviewed
CVE-2024-48290 was published Nov 7, 2024
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC... Moderate Unreviewed
CVE-2024-7316 was published Oct 18, 2024
NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling... Moderate Unreviewed
CVE-2024-8508 was published Oct 3, 2024
The Eaton Foreseer software provides multiple customizable input fields for the users to... Moderate Unreviewed
CVE-2024-31416 was published Sep 13, 2024
A vulnerability classified as problematic was found in SourceCodester Food Ordering Management... Moderate Unreviewed
CVE-2024-8558 was published Sep 7, 2024
NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a... Moderate Unreviewed
CVE-2024-0111 was published Aug 31, 2024
Improper input validation in Power Management Firmware (PMFW) may allow an attacker with... Moderate Unreviewed
CVE-2023-31310 was published Aug 13, 2024
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows... Moderate Unreviewed
CVE-2024-6768 was published Aug 12, 2024
Django vulnerable to denial-of-service attack Moderate
CVE-2024-41991 was published for Django (pip) Aug 7, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where... Moderate Unreviewed
CVE-2024-31957 was published Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 850, Exynos 1080, Exynos 2100,... Moderate Unreviewed
CVE-2024-27360 was published Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330... Moderate Unreviewed
CVE-2024-27362 was published Jul 9, 2024
Improper Validation of Specified Quantity in Input vulnerability in The Events Calendar BookIt... Moderate Unreviewed
CVE-2024-24715 was published May 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database