GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,909
Composer 4,270
Erlang 31
GitHub Actions 21
Go 2,044
Maven 5,228
npm 3,736
NuGet 663
pip 3,414
Pub 12
RubyGems 891
Rust 868
Swift 36

Unreviewed advisories

All unreviewed 238,239

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

296 advisories

Filter by severity

Sort by

Least recently updated

IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, 9.4 CD, IBM MQ Appliance 9.3 LTS, 9.3 CD, 9.4... Moderate Unreviewed

CVE-2024-51470 was published Dec 18, 2024

Out-of-bounds read vulnerability in the M3U8 module Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2024-54116 was published Dec 12, 2024

Out-of-bounds access vulnerability in playback in the DASH module Impact: Successful exploitation... Moderate Unreviewed

CVE-2024-54114 was published Dec 12, 2024

Out-of-bounds read vulnerability in the DASH module Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2024-54115 was published Dec 12, 2024

In the Linux kernel, the following vulnerability has been resolved: ice: Fix improper extts... Moderate Unreviewed

CVE-2024-42139 was published Jul 30, 2024

In the Linux kernel, the following vulnerability has been resolved: virtio_pmem: Check device... Moderate Unreviewed

CVE-2024-50184 was published Nov 8, 2024

While parsing certain malformed PLY files, PCL version 1.14.1 crashes due to an uncaught std:... High Unreviewed

CVE-2024-53432 was published Dec 4, 2024

In the Linux kernel, the following vulnerability has been resolved: pinctrl: ocelot: fix system... Moderate Unreviewed

CVE-2024-50196 was published Nov 8, 2024

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing... Moderate Unreviewed

CVE-2024-50195 was published Nov 8, 2024

The issue was addressed with improved checks. This issue is fixed in Safari 16.6.1, macOS Ventura... Critical Unreviewed

CVE-2023-41993 was published Sep 21, 2023

Mattermost versions 10.0.x <= 10.0.1, 10.1.x <= 10.1.1, 9.11.x <= 9.11.3, 9.5.x <= 9.5.11 fail to... High Unreviewed

CVE-2024-11599 was published Nov 28, 2024

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. In certain... Critical Unreviewed

CVE-2023-37303 was published Jun 30, 2023

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix the missing... Moderate Unreviewed

CVE-2024-50284 was published Nov 19, 2024

glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation violation when calling... Moderate Unreviewed

CVE-2023-45922 was published Mar 27, 2024

The incorrect object was checked for NULL in the built-in profiler, potentially leading to... Moderate Unreviewed

CVE-2024-1556 was published Feb 20, 2024

vmir e8117 was discovered to contain a segmentation violation via the export_function function at... Moderate Unreviewed

CVE-2024-35427 was published Nov 9, 2024

vmir e8117 was discovered to contain a segmentation violation via the wasm_parse_block function... Moderate Unreviewed

CVE-2024-35421 was published Nov 9, 2024

vmir e8117 was discovered to contain a segmentation violation via the function_prepare_parse... Unknown Unreviewed

CVE-2024-35425 was published Nov 9, 2024

vmir e8117 was discovered to contain a segmentation violation via the import_function function at... Moderate Unreviewed

CVE-2024-35424 was published Nov 9, 2024

A Local Privilege Escalation vulnerability exists in the affected product. The vulnerability... High Unreviewed

CVE-2024-10945 was published Nov 12, 2024

Knud from Fraktal.fi has found a flaw in some Axis Network Door Controllers and Axis Network... Moderate Unreviewed

CVE-2023-21405 was published Jul 25, 2023

In ShortcutInfo of ShortcutInfo.java, there is a possible way for an app to retain notification... Low Unreviewed

CVE-2023-21246 was published Jul 13, 2023

A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an... Moderate Unreviewed

CVE-2024-7006 was published Aug 12, 2024

In ngmm, there is a possible undefined behavior due to incorrect error handling. This could lead... Moderate Unreviewed

CVE-2023-52534 was published Apr 8, 2024

An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser... Moderate Unreviewed

CVE-2024-50602 was published Oct 27, 2024

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

296 advisories