GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,904
Maven
5,000+
npm
3,634
NuGet
638
pip
3,250
Pub
10
RubyGems
867
Rust
819
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,769 advisories
Filter by severity
Insufficient input validation in the ABL may allow a privileged
attacker with access to the BIOS...
Low
Unreviewed
CVE-2021-46772
was published
Aug 13, 2024
Improper validation of array index in Power Management Firmware (PMFW) may allow a privileged...
Low
Unreviewed
CVE-2023-31307
was published
Aug 13, 2024
Generation of weak and predictable Initialization Vector (IV) in PMFW (Power Management Firmware)...
Low
Unreviewed
CVE-2023-31305
was published
Aug 13, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ...
Low
Unreviewed
CVE-2024-41907
was published
Aug 13, 2024
SAP BusinessObjects Business Intelligence
Platform allows an authenticated attacker to upload...
Low
Unreviewed
CVE-2024-28166
was published
Aug 13, 2024
SAP BusinessObjects Business Intelligence
Platform allows an authenticated attacker to upload...
Low
Unreviewed
CVE-2024-41731
was published
Aug 13, 2024
Ecosystem Agent version 4 < 4.5.1.2597 and Ecosystem Agent version 5 < 5.1.4.2473 did not...
Low
Unreviewed
CVE-2024-5445
was published
Aug 12, 2024
The Easy Digital Downloads – Sell Digital Files & Subscriptions (eCommerce Store + Payments Made...
Low
Unreviewed
CVE-2024-6692
was published
Aug 12, 2024
A NULL pointer dereference flaw was found in the ub_ctx_set_fwd function in Unbound. This issue...
Low
Unreviewed
CVE-2024-43167
was published
Aug 12, 2024
Setting SMS media allows to set GSM modem file. Later this file is used as Linux device. But due...
Low
Unreviewed
CVE-2024-22123
was published
Aug 12, 2024
Zabbix allows to configure SMS notifications. AT command injection occurs on "Zabbix Server"...
Low
Unreviewed
CVE-2024-22122
was published
Aug 12, 2024
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm, where an attacker can...
Low
Unreviewed
CVE-2024-0102
was published
Aug 8, 2024
Access permission verification vulnerability in the Notepad module
Impact: Successful...
Low
Unreviewed
CVE-2024-42036
was published
Aug 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
spi: don't unoptimize...
Low
Unreviewed
CVE-2024-42249
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
filemap: replace...
Low
Unreviewed
CVE-2024-42233
was published
Aug 7, 2024
Race in Frames in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a...
Low
Unreviewed
CVE-2024-6996
was published
Aug 6, 2024
oFono AT CMGR Command Uninitialized Variable Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2024-7542
was published
Aug 6, 2024
oFono AT CMGL Command Uninitialized Variable Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2024-7540
was published
Aug 6, 2024
oFono AT CMT Command Uninitialized Variable Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2024-7541
was published
Aug 6, 2024
oFono QMI SMS Handling Out-Of-Bounds Read Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2024-7537
was published
Aug 6, 2024
The com.cascadialabs.who (aka Who - Caller ID, Spam Block) application 15.0 for Android places...
Low
Unreviewed
CVE-2024-40096
was published
Aug 5, 2024
Improper Input Validation of query search results for private field data in PingIDM OPENIDM ...
Low
Unreviewed
CVE-2024-23600
was published
Aug 1, 2024
Dell iDRAC Service Module version 5.3.0.0 and prior contains Out of bound write Vulnerability. A...
Low
Unreviewed
CVE-2024-38489
was published
Aug 1, 2024
Stored XSS vulnerability has been discovered in OpenText™ Filr product, affecting versions 24.1.1...
Low
Unreviewed
CVE-2024-4187
was published
Jul 31, 2024
A denial-of-service vulnerability could allow an authenticated user to trigger an internal...
Low
Unreviewed
CVE-2022-4003
was published
Jul 31, 2024
ProTip!
Advisories are also available from the
GraphQL API