Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

342 advisories

Loading
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... High Unreviewed
CVE-2024-39540 was published Jul 11, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the the IKE daemon (iked... High Unreviewed
CVE-2024-39545 was published Jul 11, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis management... High Unreviewed
CVE-2024-39530 was published Jul 11, 2024
XMP Toolkit's `XmpFile::close` can trigger undefined behavior Low
GHSA-66fw-43h8-f8p3 was published for xmp_toolkit (Rust) Jul 26, 2024
Improper conditions check in Intel(R) Power Gadget software for macOS all versions may allow an... Low Unreviewed
CVE-2023-38420 was published May 16, 2024
It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests... High Unreviewed
CVE-2021-3560 was published Feb 17, 2022
create_empty_lvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to... Moderate Unreviewed
CVE-2024-25739 was published Feb 12, 2024
dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in... Moderate Unreviewed
CVE-2023-52429 was published Feb 12, 2024
In the Linux kernel, the following vulnerability has been resolved: tracing/probes: fix error... Moderate Unreviewed
CVE-2024-36481 was published Jun 21, 2024
Vyper's raw_call `value=` kwargs not disabled for static and delegate calls Moderate
CVE-2024-24567 was published for vyper (pip) Jan 30, 2024
cyberthirst pcaversaccio
kuroi8 0xdeadbeef0x
LNbits improperly handles potential network and payment failures when using Eclair backend High
CVE-2024-34694 was published for lnbits (pip) Jun 17, 2024
Semisol fishcakeday
moby docker daemon crash during image pull of malicious image Moderate
CVE-2021-21285 was published for github.com/moby/moby (Go) Jan 31, 2024
bgeesaman joshlarsen
IanColdwater mauilion raesene cpuguy83 neersighted
Directus is soft-locked by providing a string value to random string util High
CVE-2024-36128 was published for directus (npm) Jun 4, 2024
Zehir
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Layer 2 Address... Moderate Unreviewed
CVE-2024-30402 was published Apr 12, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... Moderate Unreviewed
CVE-2024-30384 was published Apr 12, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the the Public Key... High Unreviewed
CVE-2024-30397 was published Apr 12, 2024
Tor path lengths too short when "full Vanguards" configured Moderate
CVE-2024-35313 was published for arti (Rust) May 18, 2024
Previous ATX is not checked to be the newest valid ATX by Smesher when validating incoming ATX High
CVE-2024-34360 was published for github.com/spacemeshos/api (Go) May 10, 2024
In the Linux kernel, the following vulnerability has been resolved: ARM: footbridge: fix PCI... Moderate Unreviewed
CVE-2021-46909 was published Feb 27, 2024
Mattermost crashes web clients via a malformed custom status Moderate
CVE-2024-4182 was published for github.com/mattermost/mattermost-server (Go) Apr 26, 2024
The issue was addressed with improved checks. This issue is fixed in Safari 16.6.1, macOS Ventura... Critical Unreviewed
CVE-2023-41993 was published Sep 21, 2023
In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in... Low Unreviewed
CVE-2021-46934 was published Feb 27, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in telemetry processing of... Moderate Unreviewed
CVE-2024-30409 was published Apr 12, 2024
An Improper Check for Unusual or Exceptional Conditions in the Packet Forwarding Engine (pfe) of... Moderate Unreviewed
CVE-2023-44196 was published Oct 13, 2023
HPACK decoder panics on invalid input High
GHSA-w7hm-hmxv-pvhf was published for hpack (Rust) Apr 5, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database