Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

326 advisories

Loading
An Improper Check for Unusual or Exceptional Conditions vulnerability in telemetry processing of... Moderate Unreviewed
CVE-2024-30409 was published Apr 12, 2024
HPACK decoder panics on invalid input High
GHSA-w7hm-hmxv-pvhf was published for hpack (Rust) Apr 5, 2024
In pq, there is a possible write-what-where condition due to an incorrect bounds check. This... Moderate Unreviewed
CVE-2024-20037 was published Mar 4, 2024
In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in... Low Unreviewed
CVE-2021-46934 was published Feb 27, 2024
In the Linux kernel, the following vulnerability has been resolved: ARM: footbridge: fix PCI... Moderate Unreviewed
CVE-2021-46909 was published Feb 27, 2024
Malformed S2 Nonce Get Command Class packets can be sent to crash PC Controller v5.54.0 and... Moderate Unreviewed
CVE-2023-6640 was published Feb 21, 2024
XSS sidekiq-unique-jobs UI server vulnerability High
CVE-2024-25122 was published for sidekiq-unique-jobs (RubyGems) Feb 13, 2024
pboling Earlopain
dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in... Moderate Unreviewed
CVE-2023-52429 was published Feb 12, 2024
create_empty_lvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to... Moderate Unreviewed
CVE-2024-25739 was published Feb 12, 2024
Prior to v7.4.0, Ember ZNet is vulnerable to a denial of service attack through manipulation of... High Unreviewed
CVE-2023-6874 was published Feb 5, 2024
moby docker daemon crash during image pull of malicious image Moderate
CVE-2021-21285 was published for github.com/moby/moby (Go) Jan 31, 2024
bgeesaman joshlarsen
IanColdwater mauilion raesene cpuguy83 neersighted
BuildKit vulnerable to possible panic when incorrect parameters sent from frontend Moderate
CVE-2024-23650 was published for github.com/moby/buildkit (Go) Jan 31, 2024
cpuguy83
Vyper's raw_call `value=` kwargs not disabled for static and delegate calls Moderate
CVE-2024-24567 was published for vyper (pip) Jan 30, 2024
cyberthirst pcaversaccio
kuroi8 0xdeadbeef0x
Vulnerability of improper checking for unusual or exceptional conditions in Lamassu Bitcoin ATM... Moderate Unreviewed
CVE-2024-0675 was published Jan 30, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in Routing Protocol Daemon... High Unreviewed
CVE-2024-21614 was published Jan 12, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper... Moderate Unreviewed
CVE-2024-21603 was published Jan 12, 2024
The Gallery Plugin for WordPress – Envira Photo Gallery plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2023-6742 was published Jan 11, 2024
The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer... High Unreviewed
CVE-2023-32726 was published Dec 22, 2023
A denial of service vulnerability exists in all Silicon Labs Z-Wave controller and endpoint... Moderate Unreviewed
CVE-2023-5310 was published Dec 15, 2023
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). Affected... Moderate Unreviewed
CVE-2023-48431 was published Dec 12, 2023
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). The Web UI... Low Unreviewed
CVE-2023-48429 was published Dec 12, 2023
Mattermost fails to validate the type of the "reminder" body request parameter allowing an... Moderate Unreviewed
CVE-2023-49607 was published Dec 12, 2023
Vulnerability of data verification errors in the kernel module. Successful exploitation of this... High Unreviewed
CVE-2023-44099 was published Dec 6, 2023
Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to... Moderate Unreviewed
CVE-2023-39205 was published Nov 15, 2023
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially... Moderate Unreviewed
CVE-2023-22290 was published Nov 14, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database