Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

868 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: af_unix: Update unix_sk(sk)-... High Unreviewed
CVE-2024-36972 was published Jun 10, 2024
Null Pointer Dereference vulnerability in swfdump in swftools 0.9.2 allows attackers to crash the... High Unreviewed
CVE-2024-28458 was published Apr 11, 2024
An error in the ECMA-262 specification relating to Async Generators could have resulted in a type... High Unreviewed
CVE-2024-7652 was published Sep 6, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions... High Unreviewed
CVE-2023-30756 was published Sep 10, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions... High Unreviewed
CVE-2023-28827 was published Sep 10, 2024
Windows Networking Denial of Service Vulnerability High Unreviewed
CVE-2024-38233 was published Sep 10, 2024
Windows Networking Denial of Service Vulnerability High Unreviewed
CVE-2024-38232 was published Sep 10, 2024
Aubio is vulnerable to a NULL pointer dereference in new_aubio_filterbank High
CVE-2018-19801 was published for aubio (pip) Jul 26, 2019
A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service... High Unreviewed
CVE-2024-20436 was published Sep 25, 2024
Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP... High Unreviewed
CVE-2024-39589 was published Sep 18, 2024
SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted... High Unreviewed
CVE-2023-40308 was published Sep 15, 2023
A null pointer dereference vulnerability in IPSec component of Ivanti Connect Secure (9.x, 22.x)... High Unreviewed
CVE-2024-22052 was published Apr 4, 2024
A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanche before version 6.4.5... High Unreviewed
CVE-2024-47007 was published Oct 8, 2024
The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP... High Unreviewed
CVE-2011-1282 was published May 13, 2022
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003... High Unreviewed
CVE-2011-1231 was published May 13, 2022
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003... High Unreviewed
CVE-2011-1881 was published May 13, 2022
NULL Pointer Dereference in Protocol Buffers High
CVE-2021-22570 was published for Google.Protobuf (Composer) Jan 27, 2022
joshbressers
A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206... High Unreviewed
CVE-2024-10280 was published Oct 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database