GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,777
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,014
Maven 5,201
npm 3,721
NuGet 662
pip 3,393
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,123

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

70 advisories

Filter by severity

Sort by

Least recently updated

The HTTP server in Mongoose before 7.10 accepts requests containing negative Content-Length headers. High Unreviewed

CVE-2023-34188 was published Jun 23, 2023

Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet... High Unreviewed

CVE-2024-47257 was published Nov 26, 2024

Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote... Moderate Unreviewed

CVE-2024-9369 was published Nov 27, 2024

A memory corruption vulnerability exists in the affected products when parsing DFT files. Local... High Unreviewed

CVE-2024-6068 was published Nov 14, 2024

An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows... Moderate Unreviewed

CVE-2024-48290 was published Nov 7, 2024

Faulty input validation in the core of Apache allows malicious or exploitable backend/content... High Unreviewed

CVE-2023-38709 was published Apr 4, 2024

Improper input validation in SMU may allow an attacker with privileges and a compromised physical... Low Unreviewed

CVE-2023-31304 was published Aug 13, 2024

In SecurityCommand message after as security has been actived., there is a possible improper... Moderate Unreviewed

CVE-2023-52343 was published Apr 8, 2024

Improper input validation in Power Management Firmware (PMFW) may allow an attacker with... Moderate Unreviewed

CVE-2023-31310 was published Aug 13, 2024

In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site... Moderate Unreviewed

CVE-2022-31629 was published Sep 29, 2022

Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC... Moderate Unreviewed

CVE-2024-7316 was published Oct 18, 2024

Denial-of-service (DoS) vulnerability due to improper validation of specified type of input issue... High Unreviewed

CVE-2023-38744 was published Aug 3, 2023

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed

CVE-2021-31346 was published May 24, 2022

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed

CVE-2021-31345 was published May 24, 2022

Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP... High Unreviewed

CVE-2022-2277 was published Sep 15, 2022

A vulnerability in the HCI Modbus TCP COMPONENT of Hitachi Energy RTU500 series CMU Firmware that... High Unreviewed

CVE-2022-28613 was published May 3, 2022

Improper input validation in some Zoom clients may allow an authenticated user to conduct a... Moderate Unreviewed

CVE-2024-24690 was published Feb 14, 2024

CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS)... Critical Unreviewed

CVE-2024-8887 was published Sep 18, 2024

The Eaton Foreseer software provides multiple customizable input fields for the users to... Moderate Unreviewed

CVE-2024-31416 was published Sep 13, 2024

A vulnerability classified as problematic was found in SourceCodester Food Ordering Management... Moderate Unreviewed

CVE-2024-8558 was published Sep 7, 2024

The ctl_report_supported_opcodes function did not sufficiently validate a field provided by... High Unreviewed

CVE-2024-42416 was published Sep 5, 2024

NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a... Moderate Unreviewed

CVE-2024-0111 was published Aug 31, 2024

Improper Input Validation in Checkmk <2.2.0p15, <2.1.0p37, <=2.0.0p39 allows priviledged... Low Unreviewed

CVE-2023-23549 was published Nov 15, 2023

Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated... Low Unreviewed

CVE-2022-46143 was published Dec 13, 2022

A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows... Moderate Unreviewed

CVE-2024-6768 was published Aug 12, 2024

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

70 advisories