Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,018 advisories

Loading
FreeChart v1.5.4 was discovered to contain a NullPointerException via the component /labels... High Unreviewed
CVE-2024-23076 was published Apr 10, 2024
HTTP.sys Denial of Service Vulnerability High Unreviewed
CVE-2024-26219 was published Apr 9, 2024
Apfloat v1.10.1 was discovered to contain a NullPointerException via the component org.apfloat... High Unreviewed
CVE-2024-23085 was published Apr 8, 2024
A null pointer dereference vulnerability in IPSec component of Ivanti Connect Secure (9.x, 22.x)... High Unreviewed
CVE-2024-22052 was published Apr 4, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix variable ... High Unreviewed
CVE-2024-26672 was published Apr 2, 2024
A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS... High Unreviewed
CVE-2024-20312 was published Mar 27, 2024
Mesa 23.0.4 was discovered to contain a NULL pointer dereference in check_xshm() for the... High Unreviewed
CVE-2023-45931 was published Mar 27, 2024
In Fluent Bit 2.1.8 through 2.2.1, a NULL pointer dereference can be caused via an invalid HTTP... High Unreviewed
CVE-2024-23722 was published Mar 26, 2024
In mz-automation libiec61850 v1.4.0, a NULL Pointer Dereference was detected in the... High Unreviewed
CVE-2024-28286 was published Mar 21, 2024
In ss_SendCallBarringPwdRequiredIndMsg of ss_CallBarring.c, there is a possible null pointer... High Unreviewed
CVE-2024-27229 was published Mar 11, 2024
Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render. High Unreviewed
CVE-2023-43541 was published Mar 4, 2024
A Null pointer dereference in usr/sbin/httpd in ASUS AC68U 3.0.0.4.384.82230 allows remote... High Unreviewed
CVE-2024-26342 was published Feb 28, 2024
OpenDMARC 1.4.2 contains a null pointer dereference vulnerability in /OpenDMARC/libopendmarc... High Unreviewed
CVE-2024-25768 was published Feb 26, 2024
A null pointer dereference in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.11,... High Unreviewed
CVE-2023-29180 was published Feb 22, 2024
cryptography NULL pointer dereference with pkcs12.serialize_key_and_certificates when called with a non-matching certificate and private key and an hmac_hash override High
CVE-2024-26130 was published for cryptography (pip) Feb 21, 2024
Alexander-Programming cd-work
Credited to Alexander-Programming and cd-work
In onNullBinding of TileLifecycleManager.java, there is a possible way to launch an activity from... High Unreviewed
CVE-2024-0035 was published Feb 16, 2024
When a virtual server is enabled with VLAN group and SNAT listener is configured, undisclosed... High Unreviewed
CVE-2024-24775 was published Feb 14, 2024
When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests... High Unreviewed
CVE-2024-24989 was published Feb 14, 2024
When a BIG-IP Advanced WAF or BIG-IP ASM policy with a Request Body Handling option is attached... High Unreviewed
CVE-2024-23308 was published Feb 14, 2024
When BIG-IP AFM Device DoS or DoS profile is configured with NXDOMAIN attack vector and bad... High Unreviewed
CVE-2024-21763 was published Feb 14, 2024
.NET Denial of Service Vulnerability High Unreviewed
CVE-2024-21404 was published Feb 13, 2024
Twister Antivirus v8.17 allows Elevation of Privileges on the computer where it's installed by... High Unreviewed
CVE-2024-1096 was published Feb 13, 2024
A vulnerability has been identified in OpenPCS 7 V9.1 (All versions), SIMATIC BATCH V9.1 (All... High Unreviewed
CVE-2023-48363 was published Feb 13, 2024
A vulnerability has been identified in OpenPCS 7 V9.1 (All versions), SIMATIC BATCH V9.1 (All... High Unreviewed
CVE-2023-48364 was published Feb 13, 2024
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. High Unreviewed
CVE-2023-43522 was published Feb 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database