Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,466
Erlang
33
GitHub Actions
23
Go
2,166
Maven
5,000+
npm
3,830
NuGet
696
pip
3,507
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

846 advisories

Loading
Internet Small Computer Systems Interface (iSCSI) Denial of Service Vulnerability High Unreviewed
CVE-2024-43515 was published Oct 8, 2024
BranchCache Denial of Service Vulnerability High Unreviewed
CVE-2024-43506 was published Oct 8, 2024
Due to a memory leak, a denial-of-service vulnerability exists in the Rockwell Automation... High Unreviewed
CVE-2024-8626 was published Oct 8, 2024
BranchCache Denial of Service Vulnerability High Unreviewed
CVE-2024-38149 was published Oct 8, 2024
CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and... High Unreviewed
CVE-2024-47850 was published Oct 4, 2024
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x,10.5.3.x, contains an... High Unreviewed
CVE-2024-37125 was published Sep 26, 2024
Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved... High Unreviewed
CVE-2024-31145 was published Sep 25, 2024
When multiple devices share resources and one of them is to be passed through to a guest,... High Unreviewed
CVE-2024-31146 was published Sep 25, 2024
Gladys Assistant before 4.45.1 allows Privilege Escalation (a user changing their own role)... High Unreviewed
CVE-2024-47210 was published Sep 22, 2024
An issue was discovered in Technitium 11.0.2. There is a vulnerability (called BadDNS) in DNS... High Unreviewed
CVE-2023-28451 was published Sep 18, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7,... High Unreviewed
CVE-2024-44169 was published Sep 17, 2024
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS... High Unreviewed
CVE-2024-44160 was published Sep 17, 2024
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... High Unreviewed
CVE-2024-40841 was published Sep 17, 2024
This issue was addressed through improved state management. This issue is fixed in iOS 18 and... High Unreviewed
CVE-2024-27874 was published Sep 17, 2024
DHCP Server Service Denial of Service Vulnerability High Unreviewed
CVE-2024-38236 was published Sep 10, 2024
A vulnerability has been identified in SIMATIC S7-200 SMART CPU CR40 (6ES7288-1CR40-0AA0) (All... High Unreviewed
CVE-2024-43647 was published Sep 10, 2024
There is a LOW severity vulnerability affecting CPython, specifically the 'http.cookies' standard... High Unreviewed
CVE-2024-7592 was published Aug 19, 2024
Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the page parameter in... High Unreviewed
CVE-2024-42980 was published Aug 15, 2024
Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the delno parameter in... High Unreviewed
CVE-2024-42981 was published Aug 15, 2024
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the PPPOEPassword... High Unreviewed
CVE-2024-42943 was published Aug 15, 2024
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the mit_pptpusrpw... High Unreviewed
CVE-2024-42951 was published Aug 15, 2024
Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the page parameter in... High Unreviewed
CVE-2024-42969 was published Aug 15, 2024
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the Go parameter in... High Unreviewed
CVE-2024-42950 was published Aug 15, 2024
In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs)... High Unreviewed
CVE-2024-41727 was published Aug 14, 2024
A DLL hijacking vulnerability in AMD μProf could allow an attacker to achieve privilege... High Unreviewed
CVE-2023-31348 was published Aug 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database