Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,050 advisories

Loading
Azure Stack Hub Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38201 was published Aug 13, 2024
Microsoft Project Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38189 was published Aug 13, 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All... High Unreviewed
CVE-2024-41976 was published Aug 13, 2024
Apache DolphinScheduler: RCE by arbitrary js execution High
CVE-2024-29831 was published for org.apache.dolphinscheduler:dolphinscheduler (Maven) Aug 12, 2024
Apache DolphinScheduler: Resource File Read And Write Vulnerability High
CVE-2024-30188 was published for org.apache.dolphinscheduler:dolphinscheduler (Maven) Aug 12, 2024
Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533... High Unreviewed
CVE-2024-7005 was published Aug 6, 2024
An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command... High Unreviewed
CVE-2024-23483 was published Aug 6, 2024
A vulnerability has been identified in Omnivise T3000 Application Server (All versions). The... High Unreviewed
CVE-2024-38879 was published Aug 2, 2024
The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not... High Unreviewed
CVE-2024-40720 was published Aug 2, 2024
The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not... High Unreviewed
CVE-2024-40721 was published Aug 2, 2024
A path hijacking vulnerability was reported in Lenovo Driver Manager prior to version 3.1.1307... High Unreviewed
CVE-2023-1577 was published Jul 31, 2024
Improper Input Validation vulnerability in Cato Networks SDP Client on Windows allows OS Command... High Unreviewed
CVE-2024-6973 was published Jul 31, 2024
Weave server API vulnerable to arbitrary file leak High
CVE-2024-7340 was published for weave (pip) Jul 31, 2024
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39950 was published Jul 31, 2024
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39948 was published Jul 31, 2024
A vulnerability has been found in Dahua products.Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39944 was published Jul 31, 2024
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39949 was published Jul 31, 2024
Apache Traffic Server accepts characters that are not allowed for HTTP field names and forwards... High Unreviewed
CVE-2023-38522 was published Jul 26, 2024
Invalid Accept-Encoding header can cause Apache Traffic Server to fail cache lookup and force... High Unreviewed
CVE-2024-35296 was published Jul 26, 2024
EvilVideo vulnerability allows sending malicious apps disguised as videos in Telegram for Android... High Unreviewed
CVE-2024-7014 was published Jul 23, 2024
Apache Syncope Improper Input Validation vulnerability High
CVE-2024-38503 was published for org.apache.syncope.client.idrepo:syncope-client-idrepo-common-ui (Maven) Jul 22, 2024
Absent Input Validation in BinaryHttpParser High
CVE-2024-40642 was published for io.netty.incubator:netty-incubator-codec-bhttp (Maven) Jul 18, 2024
shombo
Credited to shombo
Insufficient data validation in DevTools in Google Chrome prior to 121.0.6167.85 allowed a remote... High Unreviewed
CVE-2024-3172 was published Jul 17, 2024
Insufficient data validation in Updater in Google Chrome prior to 120.0.6099.62 allowed a remote... High Unreviewed
CVE-2024-3173 was published Jul 17, 2024
Insufficient data validation in Permission Prompts in Google Chrome prior to 117.0.5938.62... High Unreviewed
CVE-2023-7012 was published Jul 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database