GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
868 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
af_unix: Update unix_sk(sk)-...
High
Unreviewed
CVE-2024-36972
was published
Jun 10, 2024
Null Pointer Dereference vulnerability in swfdump in swftools 0.9.2 allows attackers to crash the...
High
Unreviewed
CVE-2024-28458
was published
Apr 11, 2024
An error in the ECMA-262 specification relating to Async Generators could have resulted in a type...
High
Unreviewed
CVE-2024-7652
was published
Sep 6, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions...
High
Unreviewed
CVE-2023-30756
was published
Sep 10, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions...
High
Unreviewed
CVE-2023-28827
was published
Sep 10, 2024
Windows Networking Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38233
was published
Sep 10, 2024
Windows Networking Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38232
was published
Sep 10, 2024
Aubio is vulnerable to a NULL pointer dereference in new_aubio_filterbank
High
CVE-2018-19801
was published
for
aubio
(pip)
Jul 26, 2019
A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service...
High
Unreviewed
CVE-2024-20436
was published
Sep 25, 2024
Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP...
High
Unreviewed
CVE-2024-39589
was published
Sep 18, 2024
SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted...
High
Unreviewed
CVE-2023-40308
was published
Sep 15, 2023
A null pointer dereference vulnerability in IPSec component of Ivanti Connect Secure (9.x, 22.x)...
High
Unreviewed
CVE-2024-22052
was published
Apr 4, 2024
A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanche before version 6.4.5...
High
Unreviewed
CVE-2024-47007
was published
Oct 8, 2024
The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP...
High
Unreviewed
CVE-2011-1282
was published
May 13, 2022
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003...
High
Unreviewed
CVE-2011-1231
was published
May 13, 2022
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003...
High
Unreviewed
CVE-2011-1881
was published
May 13, 2022
NULL Pointer Dereference in Protocol Buffers
High
CVE-2021-22570
was published
for
Google.Protobuf
(Composer)
Jan 27, 2022
A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206...
High
Unreviewed
CVE-2024-10280
was published
Oct 23, 2024
ProTip!
Advisories are also available from the
GraphQL API