Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,036 advisories

Loading
CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and... High Unreviewed
CVE-2024-47850 was published Oct 4, 2024
Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader High
CVE-2024-47554 was published for commons-io:commons-io (Maven) Oct 3, 2024
A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series... Moderate Unreviewed
CVE-2024-20502 was published Oct 2, 2024
A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series... Moderate Unreviewed
CVE-2024-20500 was published Oct 2, 2024
A vulnerability has been found in ThingsBoard up to 3.7.0 and classified as problematic. Affected... Moderate Unreviewed
CVE-2024-9358 was published Oct 1, 2024
The swctrl service is used to detect and remotely manage PLANET Technology devices. Certain... Moderate Unreviewed
CVE-2024-8454 was published Sep 30, 2024
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x,10.5.3.x, contains an... High Unreviewed
CVE-2024-37125 was published Sep 26, 2024
Mattermost fails to strip `embeds` from `metadata` when broadcasting `posted` events Moderate
CVE-2024-47003 was published for github.com/mattermost/mattermost/server/v8 (Go) Sep 26, 2024
c0rydoras
Credited to c0rydoras
When multiple devices share resources and one of them is to be passed through to a guest,... High Unreviewed
CVE-2024-31146 was published Sep 25, 2024
Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved... High Unreviewed
CVE-2024-31145 was published Sep 25, 2024
Denial of service in rocket chat message parser Moderate
CVE-2024-46935 was published for @rocket.chat/message-parser (npm) Sep 25, 2024
Spring Framework DoS via conditional HTTP request Moderate
CVE-2024-38809 was published for org.springframework:spring-web (Maven) Sep 24, 2024
weddige
Credited to weddige
Gladys Assistant before 4.45.1 allows Privilege Escalation (a user changing their own role)... High Unreviewed
CVE-2024-47210 was published Sep 22, 2024
protobuf-java has potential Denial of Service issue High
CVE-2024-7254 was published for com.google.protobuf:protobuf-java (RubyGems) Sep 19, 2024
anlakii
Credited to anlakii
An issue was discovered in Technitium 11.0.2. There is a vulnerability (called BadDNS) in DNS... High Unreviewed
CVE-2023-28451 was published Sep 18, 2024
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify... Moderate Unreviewed
CVE-2024-8892 was published Sep 18, 2024
vLLM Denial of Service via the best_of parameter Moderate
CVE-2024-8939 was published for vllm (pip) Sep 17, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7,... High Unreviewed
CVE-2024-44169 was published Sep 17, 2024
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed
CVE-2024-44176 was published Sep 17, 2024
A logic error was addressed with improved error handling. This issue is fixed in macOS Ventura 13... Moderate Unreviewed
CVE-2024-44183 was published Sep 17, 2024
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed
CVE-2024-44154 was published Sep 17, 2024
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS... High Unreviewed
CVE-2024-44160 was published Sep 17, 2024
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... High Unreviewed
CVE-2024-40841 was published Sep 17, 2024
This issue was addressed through improved state management. This issue is fixed in iOS 18 and... High Unreviewed
CVE-2024-27874 was published Sep 17, 2024
DHCP Server Service Denial of Service Vulnerability High Unreviewed
CVE-2024-38236 was published Sep 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database