Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,579 advisories

Loading
A vulnerability has been identified in S7-PCT (All versions), Security Configuration Tool (SCT) ... High Unreviewed
CVE-2023-46280 was published May 14, 2024
A flaw was found within the handling of SMB2 read requests in the kernel ksmbd module. The issue... High Unreviewed
CVE-2023-39179 was published Nov 18, 2024
A flaw was found within the parsing of SMB2 requests that have a transform header in the kernel... Moderate Unreviewed
CVE-2023-39176 was published Nov 18, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB... High Unreviewed
CVE-2024-24453 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of S1Setup Request messages in... High Unreviewed
CVE-2024-24459 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB Release Indication... High Unreviewed
CVE-2024-24452 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB Setup List Context SURes... High Unreviewed
CVE-2024-24457 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB Modify Request messages... High Unreviewed
CVE-2024-24454 was published Nov 15, 2024
An invalid memory access when handling the ENB Configuration Transfer messages containing invalid... High Unreviewed
CVE-2024-24458 was published Nov 15, 2024
An invalid memory access when handling a UE Context Release message containing an invalid UE... High Unreviewed
CVE-2024-24455 was published Nov 15, 2024
Audition versions 23.6.9, 24.4.6 and earlier are affected by an out-of-bounds read vulnerability... Moderate Unreviewed
CVE-2024-49536 was published Nov 15, 2024
A vulnerability in Cisco TelePresence CE and RoomOS could allow an unauthenticated, adjacent... Moderate Unreviewed
CVE-2023-20094 was published Nov 15, 2024
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series... Moderate Unreviewed
CVE-2022-20766 was published Nov 15, 2024
In ProtocolPsKeepAliveStatusAdapter::getCode() of protocolpsadapter.cpp, there is a possible out... Moderate Unreviewed
CVE-2024-27230 was published Mar 11, 2024
Storage Spaces Controller Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-21877 was published Jan 12, 2022
Win32k Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-21876 was published Jan 12, 2022
In the Linux kernel, the following vulnerability has been resolved: netdevsim: Add trailing zero... Moderate Unreviewed
CVE-2024-50259 was published Nov 9, 2024
In onActivityResult of EditUserPhotoController.java, there is a possible cross-user media read... Moderate Unreviewed
CVE-2024-43082 was published Nov 13, 2024
A flaw was found within the parsing of extended attributes in the kernel ksmbd module. The issue... Moderate Unreviewed
CVE-2023-4458 was published Nov 14, 2024
An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive... High Unreviewed
CVE-2023-36201 was published Jul 7, 2023
Out-of-bounds read for some OpenCL(TM) software may allow an authenticated user to potentially... Low Unreviewed
CVE-2024-32667 was published Nov 13, 2024
Out-of-bounds read in some Intel(R) VPL software before version 24.1.4 may allow an authenticated... Low Unreviewed
CVE-2024-28051 was published Nov 13, 2024
In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Fix KASAN... High Unreviewed
CVE-2024-50227 was published Nov 9, 2024
An out of bounds read in Ivanti Connect Secure before version 22.7R2.3 allows a remote... High Unreviewed
CVE-2024-37400 was published Nov 13, 2024
Improper bounds checking in Ivanti Secure Access Client before version 22.7R3 allows a local... Moderate Unreviewed
CVE-2024-38654 was published Nov 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database