GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
69 advisories
Filter by severity
Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote...
Moderate
Unreviewed
CVE-2024-9369
was published
Nov 27, 2024
Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet...
High
Unreviewed
CVE-2024-47257
was published
Nov 26, 2024
A memory corruption vulnerability exists in the affected products when parsing DFT files. Local...
High
Unreviewed
CVE-2024-6068
was published
Nov 14, 2024
An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows...
Moderate
Unreviewed
CVE-2024-48290
was published
Nov 7, 2024
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC...
Moderate
Unreviewed
CVE-2024-7316
was published
Oct 18, 2024
CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS)...
Critical
Unreviewed
CVE-2024-8887
was published
Sep 18, 2024
The Eaton Foreseer software provides multiple customizable input fields for the users to...
Moderate
Unreviewed
CVE-2024-31416
was published
Sep 13, 2024
A vulnerability classified as problematic was found in SourceCodester Food Ordering Management...
Moderate
Unreviewed
CVE-2024-8558
was published
Sep 7, 2024
The ctl_report_supported_opcodes function did not sufficiently validate a field provided by...
High
Unreviewed
CVE-2024-42416
was published
Sep 5, 2024
NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a...
Moderate
Unreviewed
CVE-2024-0111
was published
Aug 31, 2024
Improper input validation in Power Management Firmware (PMFW) may allow an attacker with...
Moderate
Unreviewed
CVE-2023-31310
was published
Aug 13, 2024
Improper input validation in SMU may allow an attacker with privileges and a compromised physical...
Low
Unreviewed
CVE-2023-31304
was published
Aug 13, 2024
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows...
Moderate
Unreviewed
CVE-2024-6768
was published
Aug 12, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 850, Exynos 1080, Exynos 2100,...
Moderate
Unreviewed
CVE-2024-27360
was published
Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where...
Moderate
Unreviewed
CVE-2024-31957
was published
Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330...
Moderate
Unreviewed
CVE-2024-27362
was published
Jul 9, 2024
A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow...
High
Unreviewed
CVE-2024-5102
was published
Jun 10, 2024
Improper Validation of Specified Quantity in Input vulnerability in Tips and Tricks HQ WP Express...
High
Unreviewed
CVE-2024-30527
was published
May 17, 2024
Improper Validation of Specified Quantity in Input vulnerability in The Events Calendar BookIt...
Moderate
Unreviewed
CVE-2024-24715
was published
May 17, 2024
An improper access control was identified in the Identity Security Cloud (ISC) message server API...
Moderate
Unreviewed
CVE-2024-3317
was published
May 15, 2024
A key used in logging.json does not follow the least privilege principle by default and is...
Moderate
Unreviewed
CVE-2024-3185
was published
Apr 23, 2024
A vulnerability was reported
in a system recovery bootloader that was part of the Lenovo...
Moderate
Unreviewed
CVE-2024-23593
was published
Apr 15, 2024
In SecurityCommand message after as security has been actived., there is a possible improper...
Moderate
Unreviewed
CVE-2023-52343
was published
Apr 8, 2024
Faulty input validation in the core of Apache allows malicious or exploitable backend/content...
High
Unreviewed
CVE-2023-38709
was published
Apr 4, 2024
Improper input validation in some Zoom clients may allow an authenticated user to conduct a...
Moderate
Unreviewed
CVE-2024-24690
was published
Feb 14, 2024
ProTip!
Advisories are also available from the
GraphQL API