Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

463 advisories

Loading
Uncaught exception in the firmware for some Intel(R) Server Board M50CYP Family before version... Moderate Unreviewed
CVE-2022-25917 was published Nov 11, 2022
No exception handling vulnerability which revealed sensitive or excessive information to users. High Unreviewed
CVE-2023-23837 was published Apr 25, 2023
An issue was discovered in Exynos Mobile Processor and Modem for Exynos Modem 5123, Exynos Modem... High Unreviewed
CVE-2023-29092 was published May 9, 2023
A denial-of-service vulnerability exists in the affected products. The vulnerability could allow... High Unreviewed
CVE-2025-24478 was published Jan 28, 2025
Improper handling of alternate encoding occurs when Elastic Defend on Windows systems attempts to... Moderate Unreviewed
CVE-2024-37284 was published Jan 21, 2025
Yauaa vulnerable to ArrayIndexOutOfBoundsException triggered by a crafted Sec-Ch-Ua-Full-Version-List High
CVE-2022-23496 was published for nl.basjes.parse.useragent:yauaa (Maven) Dec 8, 2022
binary-1024
Credited to binary-1024
Specifically crafted SCMI messages sent to an SCP running SCP-Firmware release versions up to and... Moderate Unreviewed
CVE-2024-11863 was published Jan 14, 2025
Specifically crafted SCMI messages sent to an SCP running SCP-Firmware release versions up to and... High Unreviewed
CVE-2024-11864 was published Jan 14, 2025
An Improper Handling of Exceptional Conditions vulnerability in the command-line processing of... Moderate Unreviewed
CVE-2025-21596 was published Jan 9, 2025
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd)... High Unreviewed
CVE-2025-21602 was published Jan 9, 2025
Cilium's Layer 7 policy enforcement may not occur in policies with wildcarded port ranges Moderate
CVE-2024-52529 was published for github.com/cilium/cilium (Go) Nov 25, 2024
A potential memory vulnerability due to insufficient input validation in PDFXEditCore.x64.dll in... High Unreviewed
CVE-2023-24308 was published Mar 28, 2023
The transport_message_handler function in SCP-Firmware release versions 2.11.0-2.15.0 does not... High Unreviewed
CVE-2024-9413 was published Nov 13, 2024
Quarkus Improper Handling of Insufficient Permissions or Privileges and Improper Handling of Exceptional Conditions vulnerability High
CVE-2023-6267 was published for io.quarkus.resteasy.reactive:resteasy-reactive (Maven) Jan 25, 2024
A potential security vulnerability has been identified in the HPE NonStop DISK UTIL (T9208)... Moderate Unreviewed
CVE-2024-51766 was published Nov 22, 2024
Segfault in `tf.raw_ops.SparseCountSparseOutput` Low
CVE-2021-29619 was published for tensorflow (pip) May 21, 2021
Crash in `tf.transpose` with complex inputs Low
CVE-2021-29618 was published for tensorflow (pip) May 21, 2021
Crash in `tf.strings.substr` due to `CHECK`-fail Low
CVE-2021-29617 was published for tensorflow (pip) May 21, 2021
Bad documentation of error handling in ParseWithClaims can lead to potentially dangerous situations Low
CVE-2024-51744 was published for github.com/golang-jwt/jwt/v4 (Go) Nov 4, 2024
yuligesec
Credited to yuligesec
loona-hpack Panic Vulnerability Moderate
CVE-2024-51502 was published for loona-hpack (Rust) Nov 4, 2024
rdiffweb Missing Custom Error Page Moderate
CVE-2022-3175 was published for rdiffweb (pip) Sep 14, 2022
In mintplex-labs/anything-llm, a vulnerability exists in the thread update process that allows... High Unreviewed
CVE-2024-3150 was published Jun 6, 2024
AVEVA PI Server versions 2023 and 2018 SP3 P05 and prior contain a vulnerability that could... High Unreviewed
CVE-2023-34348 was published Jan 18, 2024
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of... High Unreviewed
CVE-2024-36730 was published Jun 6, 2024
An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd)... High Unreviewed
CVE-2024-47491 was published Oct 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database