Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

92,285 advisories

Loading
A maliciously crafted DLL file when placed in temporary files and folders that are leveraged by... High Unreviewed
CVE-2024-9500 was published Nov 16, 2024
An issue in TOTOLINK Bluetooth Wireless Adapter A600UB allows a local attacker to execute... High Unreviewed
CVE-2024-51141 was published Nov 15, 2024
NULL pointer dereference in the MMS Client in MZ Automation LibIEC1850 before commit... High Unreviewed
CVE-2024-45969 was published Nov 15, 2024
Azure Stack HCI Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49060 was published Nov 15, 2024
An invalid memory access when handling the ENB Configuration Transfer messages containing invalid... High Unreviewed
CVE-2024-24458 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB Setup List Context SURes... High Unreviewed
CVE-2024-24457 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB Release Indication... High Unreviewed
CVE-2024-24452 was published Nov 15, 2024
An invalid memory access when handling a UE Context Release message containing an invalid UE... High Unreviewed
CVE-2024-24455 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of S1Setup Request messages in... High Unreviewed
CVE-2024-24459 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB... High Unreviewed
CVE-2024-24453 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB Modify Request messages... High Unreviewed
CVE-2024-24454 was published Nov 15, 2024
IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 is vulnerable to an... High Unreviewed
CVE-2024-39726 was published Nov 15, 2024
A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. Affected by this... High Unreviewed
CVE-2024-11248 was published Nov 15, 2024
IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, and 6.1.0.0 could allow a remote... High Unreviewed
CVE-2024-41784 was published Nov 15, 2024
A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS... High Unreviewed
CVE-2022-20853 was published Nov 15, 2024
A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an... High Unreviewed
CVE-2022-20655 was published Nov 15, 2024
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated,... High Unreviewed
CVE-2022-20649 was published Nov 15, 2024
A vulnerability in the certificate validation of Cisco Expressway-C and Cisco&nbsp... High Unreviewed
CVE-2022-20814 was published Nov 15, 2024
A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an... High Unreviewed
CVE-2022-20685 was published Nov 15, 2024
A vulnerability in the local interface of Cisco BroadWorks Network Server could allow an... High Unreviewed
CVE-2023-20125 was published Nov 15, 2024
A stored cross-site scripting (XSS) vulnerability exists in craigk5n/webcalendar version 1.3.0.... High Unreviewed
CVE-2024-1097 was published Nov 15, 2024
Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control... High Unreviewed
CVE-2024-10534 was published Nov 15, 2024
A stored cross-site scripting (XSS) vulnerability exists in openemr/openemr version 7.0.1. An... High Unreviewed
CVE-2024-0875 was published Nov 15, 2024
A vulnerability, which was classified as critical, has been found in TP-Link VN020 F3v(T) TT_V6.2... High Unreviewed
CVE-2024-11237 was published Nov 15, 2024
The External Database Based Actions plugin for WordPress is vulnerable to authentication bypass... High Unreviewed
CVE-2024-10311 was published Nov 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database