GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,357

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

20,510 advisories

Filter by severity

Sort by

Least recently updated

Incorrect access control in the component /servlet/SnoopServlet of Shenzhou News Union Enterprise... Critical Unreviewed

CVE-2024-44760 was published Aug 28, 2024

Multiple Buffer overflows in the MMS Client in MZ Automation LibIEC61850 before commit... Critical Unreviewed

CVE-2024-45970 was published Nov 15, 2024

In OpenBSD 7.5 before errata 008 and OpenBSD 7.4 before errata 021, avoid possible mbuf double... Critical Unreviewed

CVE-2024-10934 was published Nov 15, 2024

Multiple Buffer overflows in the MMS Client in MZ Automation LibIEC61850 before commit... Critical Unreviewed

CVE-2024-45971 was published Nov 15, 2024

An improper verification of cryptographic signature vulnerability was identified in GitHub... Critical Unreviewed

CVE-2024-9487 was published Oct 11, 2024

A vulnerability in the web UI of Cisco IND could allow an authenticated, remote attacker to... Critical Unreviewed

CVE-2023-20036 was published Nov 15, 2024

A vulnerability in the external authentication mechanism of Cisco Modeling Labs could allow an... Critical Unreviewed

CVE-2023-20154 was published Nov 15, 2024

Improper neutralization of special elements used in a command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-10443 was published Nov 15, 2024

The Really Simple Security (Free, Pro, and Pro Multisite) plugins for WordPress are vulnerable to... Critical Unreviewed

CVE-2024-10924 was published Nov 15, 2024

Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote... Critical Unreviewed

CVE-2024-11120 was published Nov 15, 2024

The ventilator's microcontroller lacks memory protection. An attacker could connect to the... Critical Unreviewed

CVE-2024-48970 was published Nov 15, 2024

The ventilator and the Service PC lack sufficient audit logging capabilities to allow for... Critical Unreviewed

CVE-2024-48967 was published Nov 15, 2024

The ventilator does not perform proper file integrity checks when adopting firmware updates. This... Critical Unreviewed

CVE-2024-48974 was published Nov 15, 2024

The Clinician Password and Serial Number Clinician Password are hard-coded into the ventilator in... Critical Unreviewed

CVE-2024-48971 was published Nov 15, 2024

The debug port on the ventilator's serial interface is enabled by default. This could allow an... Critical Unreviewed

CVE-2024-48973 was published Nov 15, 2024

The software tools used by service personnel to test & calibrate the ventilator do not support... Critical Unreviewed

CVE-2024-48966 was published Nov 15, 2024

This vulnerability exists in Matrix Door Controller Cosec Vega FAXQ due to improper... Critical Unreviewed

CVE-2024-10381 was published Oct 25, 2024

An issue in Olive VLE allows an attacker to obtain sensitive information via the reset password... Critical Unreviewed

CVE-2024-48428 was published Oct 25, 2024

Microsoft Exchange Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE... Critical Unreviewed

CVE-2022-21969 was published Jan 12, 2022

Windows Hyper-V Elevation of Privilege Vulnerability. Critical Unreviewed

CVE-2022-21901 was published Jan 12, 2022

Microsoft Exchange Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE... Critical Unreviewed

CVE-2022-21846 was published Jan 12, 2022

Windows IKE Extension Remote Code Execution Vulnerability. Critical Unreviewed

CVE-2022-21849 was published Jan 12, 2022

Microsoft Exchange Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE... Critical Unreviewed

CVE-2022-21855 was published Jan 12, 2022

Unrestricted Upload of File with Dangerous Type vulnerability in Optimal Access Inc. KBucket... Critical Unreviewed

CVE-2024-52369 was published Nov 14, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Hive Support Hive Support –... Critical Unreviewed

CVE-2024-52370 was published Nov 14, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

20,510 advisories