Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,361
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,794
NuGet
685
pip
3,473
Pub
12
RubyGems
894
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+

61 advisories

Loading
Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds... Moderate Unreviewed
CVE-2023-20508 was published Feb 12, 2025
Improper handling of invalid nested page table entries in the IOMMU may allow a privileged... Moderate Unreviewed
CVE-2023-20582 was published Feb 12, 2025
Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to... Moderate Unreviewed
CVE-2023-20515 was published Feb 12, 2025
In the Linux kernel, the following vulnerability has been resolved: netdevsim: prevent bad user... Moderate Unreviewed
CVE-2024-56716 was published Dec 29, 2024
IBM InfoSphere Information Server 11.7 could allow an authenticated user to GUI to not load or... Moderate Unreviewed
CVE-2024-52901 was published Dec 12, 2024
Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote... Moderate Unreviewed
CVE-2024-9369 was published Nov 27, 2024
An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows... Moderate Unreviewed
CVE-2024-48290 was published Nov 7, 2024
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC... Moderate Unreviewed
CVE-2024-7316 was published Oct 18, 2024
NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling... Moderate Unreviewed
CVE-2024-8508 was published Oct 3, 2024
The Eaton Foreseer software provides multiple customizable input fields for the users to... Moderate Unreviewed
CVE-2024-31416 was published Sep 13, 2024
A vulnerability classified as problematic was found in SourceCodester Food Ordering Management... Moderate Unreviewed
CVE-2024-8558 was published Sep 7, 2024
NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a... Moderate Unreviewed
CVE-2024-0111 was published Aug 31, 2024
Improper input validation in Power Management Firmware (PMFW) may allow an attacker with... Moderate Unreviewed
CVE-2023-31310 was published Aug 13, 2024
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows... Moderate Unreviewed
CVE-2024-6768 was published Aug 12, 2024
Django vulnerable to denial-of-service attack Moderate
CVE-2024-41991 was published for Django (pip) Aug 7, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where... Moderate Unreviewed
CVE-2024-31957 was published Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 850, Exynos 1080, Exynos 2100,... Moderate Unreviewed
CVE-2024-27360 was published Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330... Moderate Unreviewed
CVE-2024-27362 was published Jul 9, 2024
Improper Validation of Specified Quantity in Input vulnerability in The Events Calendar BookIt... Moderate Unreviewed
CVE-2024-24715 was published May 17, 2024
An improper access control was identified in the Identity Security Cloud (ISC) message server API... Moderate Unreviewed
CVE-2024-3317 was published May 15, 2024
A key used in logging.json does not follow the least privilege principle by default and is... Moderate Unreviewed
CVE-2024-3185 was published Apr 23, 2024
A vulnerability was reported in a system recovery bootloader that was part of the Lenovo... Moderate Unreviewed
CVE-2024-23593 was published Apr 15, 2024
In SecurityCommand message after as security has been actived., there is a possible improper... Moderate Unreviewed
CVE-2023-52343 was published Apr 8, 2024
Improper input validation in some Zoom clients may allow an authenticated user to conduct a... Moderate Unreviewed
CVE-2024-24690 was published Feb 14, 2024
A vulnerability exists in the input validation of the GOOSE messages where out of range values... Moderate Unreviewed
CVE-2023-4518 was published Dec 1, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database