GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
30
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,683
NuGet
650
pip
3,299
Pub
11
RubyGems
878
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
816 advisories
Filter by severity
A vulnerability in the TLS processing feature of Cisco Firepower Threat Defense (FTD) Software...
High
Unreviewed
CVE-2024-20339
was published
Oct 23, 2024
A vulnerability in the Internet Key Exchange version 2 (IKEv2) protocol for VPN termination of...
High
Unreviewed
CVE-2024-20426
was published
Oct 23, 2024
A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206...
High
Unreviewed
CVE-2024-10280
was published
Oct 23, 2024
The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP...
High
Unreviewed
CVE-2011-1282
was published
May 13, 2022
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003...
High
Unreviewed
CVE-2011-1231
was published
May 13, 2022
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003...
High
Unreviewed
CVE-2011-1881
was published
May 13, 2022
A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanche before version 6.4.5...
High
Unreviewed
CVE-2024-47007
was published
Oct 8, 2024
A null pointer dereference vulnerability in IPSec component of Ivanti Connect Secure (9.x, 22.x)...
High
Unreviewed
CVE-2024-22052
was published
Apr 4, 2024
SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted...
High
Unreviewed
CVE-2023-40308
was published
Sep 15, 2023
Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP...
High
Unreviewed
CVE-2024-39589
was published
Sep 18, 2024
A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service...
High
Unreviewed
CVE-2024-20436
was published
Sep 25, 2024
Windows Networking Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38233
was published
Sep 10, 2024
Windows Networking Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38232
was published
Sep 10, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions...
High
Unreviewed
CVE-2023-30756
was published
Sep 10, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions...
High
Unreviewed
CVE-2023-28827
was published
Sep 10, 2024
An error in the ECMA-262 specification relating to Async Generators could have resulted in a type...
High
Unreviewed
CVE-2024-7652
was published
Sep 6, 2024
Null Pointer Dereference vulnerability in swfdump in swftools 0.9.2 allows attackers to crash the...
High
Unreviewed
CVE-2024-28458
was published
Apr 11, 2024
In the Linux kernel, the following vulnerability has been resolved:
af_unix: Update unix_sk(sk)-...
High
Unreviewed
CVE-2024-36972
was published
Jun 10, 2024
Mesa 23.0.4 was discovered to contain a NULL pointer dereference in check_xshm() for the...
High
Unreviewed
CVE-2023-45931
was published
Mar 27, 2024
A null pointer dereference vulnerability in Zyxel ATP series firmware versions from V4.32 through...
High
Unreviewed
CVE-2024-42058
was published
Sep 3, 2024
In onNullBinding of TileLifecycleManager.java, there is a possible way to launch an activity from...
High
Unreviewed
CVE-2024-0035
was published
Feb 16, 2024
A vulnerability in the DHCPv6 relay agent of Cisco NX-OS Software could allow an unauthenticated,...
High
Unreviewed
CVE-2024-20446
was published
Aug 28, 2024
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The...
High
Unreviewed
CVE-2023-32252
was published
Jul 24, 2023
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a ...
High
Unreviewed
CVE-2024-45239
was published
Aug 25, 2024
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a ...
High
Unreviewed
CVE-2024-45235
was published
Aug 25, 2024
ProTip!
Advisories are also available from the
GraphQL API