Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,080
Erlang
29
GitHub Actions
19
Go
1,908
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

318 advisories

Loading
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... High Unreviewed
CVE-2023-36835 was published Jul 14, 2023
In onAccessPointChanged of AccessPointPreference.java, there is a possible way for unprivileged... Moderate Unreviewed
CVE-2023-21230 was published Aug 15, 2023
In OpenBGPD before 8.1, incorrect handling of BGP update data (length of path attributes) set by... Moderate Unreviewed
CVE-2023-38283 was published Aug 29, 2023
An improper check for an exceptional condition in the Insider Threat Management (ITM) Server... Moderate Unreviewed
CVE-2023-4828 was published Sep 13, 2023
Denial-of-service in NodeBB <= v2.8.10 allows unauthenticated attackers to trigger a crash, when... High Unreviewed
CVE-2023-30591 was published Sep 29, 2023
Parameter verification vulnerability in the window module.Successful exploitation of this... Moderate Unreviewed
CVE-2023-41304 was published Oct 11, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the SIP ALG of Juniper... High Unreviewed
CVE-2023-44198 was published Oct 13, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... High Unreviewed
CVE-2023-44199 was published Oct 13, 2023
HPACK decoder panics on invalid input High
GHSA-w7hm-hmxv-pvhf was published for hpack (Rust) Apr 5, 2024
An Improper Check for Unusual or Exceptional Conditions in the Packet Forwarding Engine (pfe) of... Moderate Unreviewed
CVE-2023-44196 was published Oct 13, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in telemetry processing of... Moderate Unreviewed
CVE-2024-30409 was published Apr 12, 2024
In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in... Low Unreviewed
CVE-2021-46934 was published Feb 27, 2024
The issue was addressed with improved checks. This issue is fixed in Safari 16.6.1, macOS Ventura... Critical Unreviewed
CVE-2023-41993 was published Sep 21, 2023
Mattermost crashes web clients via a malformed custom status Moderate
CVE-2024-4182 was published for github.com/mattermost/mattermost-server (Go) Apr 26, 2024
Malformed S2 Nonce Get command classes can be sent to crash the gateway. A hard reset is... High Unreviewed
CVE-2024-3052 was published Apr 27, 2024
In the Linux kernel, the following vulnerability has been resolved: ARM: footbridge: fix PCI... Moderate Unreviewed
CVE-2021-46909 was published Feb 27, 2024
Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH... High Unreviewed
CVE-2023-5678 was published Nov 6, 2023
Previous ATX is not checked to be the newest valid ATX by Smesher when validating incoming ATX High
CVE-2024-34360 was published for github.com/spacemeshos/api (Go) May 10, 2024
Tor Arti's STUB circuits incorrectly have a length of 2 High
CVE-2024-35312 was published for arti (Rust) May 18, 2024
Tor path lengths too short when "full Vanguards" configured Moderate
CVE-2024-35313 was published for arti (Rust) May 18, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the the Public Key... High Unreviewed
CVE-2024-30397 was published Apr 12, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... Moderate Unreviewed
CVE-2024-30384 was published Apr 12, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Layer 2 Address... Moderate Unreviewed
CVE-2024-30402 was published Apr 12, 2024
Directus is soft-locked by providing a string value to random string util High
CVE-2024-36128 was published for directus (npm) Jun 4, 2024
Zehir
moby docker daemon crash during image pull of malicious image Moderate
CVE-2021-21285 was published for github.com/moby/moby (Go) Jan 31, 2024
bgeesaman joshlarsen
IanColdwater mauilion raesene cpuguy83 neersighted
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database