GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
94 advisories
Filter by severity
Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet...
High
Unreviewed
CVE-2024-47257
was published
Nov 26, 2024
Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote...
Moderate
Unreviewed
CVE-2024-9369
was published
Nov 27, 2024
panic on parsing crafted phonenumber inputs
Critical
CVE-2024-39697
was published
for
phonenumber
(Rust)
Jul 9, 2024
Django Denial-of-service in django.utils.text.Truncator
High
CVE-2023-43665
was published
for
Django
(pip)
Nov 3, 2023
A memory corruption vulnerability exists in the affected products when parsing DFT files. Local...
High
Unreviewed
CVE-2024-6068
was published
Nov 14, 2024
Missing validation in shape inference for `Dequantize`
Moderate
CVE-2021-37677
was published
for
tensorflow
(pip)
Aug 25, 2021
Incomplete validation in `MaxPoolGrad`
Moderate
CVE-2021-37674
was published
for
tensorflow
(pip)
Aug 25, 2021
An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows...
Moderate
Unreviewed
CVE-2024-48290
was published
Nov 7, 2024
Abort caused by allocating a vector that is too large in Tensorflow
Moderate
CVE-2022-23580
was published
for
tensorflow
(pip)
Feb 7, 2022
Faulty input validation in the core of Apache allows malicious or exploitable backend/content...
High
Unreviewed
CVE-2023-38709
was published
Apr 4, 2024
Improper input validation in SMU may allow an attacker with privileges and a compromised physical...
Low
Unreviewed
CVE-2023-31304
was published
Aug 13, 2024
In SecurityCommand message after as security has been actived., there is a possible improper...
Moderate
Unreviewed
CVE-2023-52343
was published
Apr 8, 2024
Improper input validation in Power Management Firmware (PMFW) may allow an attacker with...
Moderate
Unreviewed
CVE-2023-31310
was published
Aug 13, 2024
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site...
Moderate
Unreviewed
CVE-2022-31629
was published
Sep 29, 2022
Transaction validity oversight in pallet-ethereum
Moderate
CVE-2021-39193
was published
for
pallet-ethereum
(Rust)
Sep 1, 2021
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC...
Moderate
Unreviewed
CVE-2024-7316
was published
Oct 18, 2024
Denial-of-service (DoS) vulnerability due to improper validation of specified type of input issue...
High
Unreviewed
CVE-2023-38744
was published
Aug 3, 2023
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)...
Critical
Unreviewed
CVE-2021-31346
was published
May 24, 2022
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)...
Critical
Unreviewed
CVE-2021-31345
was published
May 24, 2022
Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP...
High
Unreviewed
CVE-2022-2277
was published
Sep 15, 2022
A vulnerability in the HCI Modbus TCP COMPONENT of Hitachi Energy RTU500 series CMU Firmware that...
High
Unreviewed
CVE-2022-28613
was published
May 3, 2022
Improper input validation in some Zoom clients may allow an authenticated user to conduct a...
Moderate
Unreviewed
CVE-2024-24690
was published
Feb 14, 2024
Django Denial of service vulnerability in django.utils.encoding.uri_to_iri
Moderate
CVE-2023-41164
was published
for
django
(pip)
Nov 3, 2023
CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS)...
Critical
Unreviewed
CVE-2024-8887
was published
Sep 18, 2024
The Eaton Foreseer software provides multiple customizable input fields for the users to...
Moderate
Unreviewed
CVE-2024-31416
was published
Sep 13, 2024
ProTip!
Advisories are also available from the
GraphQL API