GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,565
Composer 4,201
Erlang 31
GitHub Actions 19
Go 1,986
Maven 5,163
npm 3,702
NuGet 660
pip 3,328
Pub 11
RubyGems 883
Rust 843
Swift 36

Unreviewed advisories

All unreviewed 233,918

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

571 advisories

Filter by severity

Sort by

Least recently updated

An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation... Moderate Unreviewed

CVE-2024-7734 was published Sep 10, 2024

Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API alwaysmulti.cgi... Moderate Unreviewed

CVE-2024-6509 was published Sep 10, 2024

IBM MQ Operator 2.0.26 and 3.2.4 could allow a local user to cause a denial of service due to... Moderate Unreviewed

CVE-2024-40680 was published Sep 7, 2024

The IPC-Diagnostics package included in TwinCAT/BSD is vulnerable to a local denial-of-service... Moderate Unreviewed

CVE-2024-41175 was published Aug 27, 2024

ida64.dll in Hex-Rays IDA Pro through 8.4 crashes when there is a section that has many jumps... Critical Unreviewed

CVE-2024-44083 was published Aug 19, 2024

In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in... Moderate Unreviewed

CVE-2024-43856 was published Aug 17, 2024

When performing an online tag generation to devices which communicate using the ControlLogix... Moderate Unreviewed

CVE-2024-6098 was published Aug 16, 2024

In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs)... High Unreviewed

CVE-2024-41727 was published Aug 14, 2024

If exploited, this vulnerability could cause a SuiteLink server to consume excessive system... High Unreviewed

CVE-2024-7113 was published Aug 13, 2024

In the Linux kernel, the following vulnerability has been resolved: mm: huge_memory: use ... Moderate Unreviewed

CVE-2024-42258 was published Aug 12, 2024

Uncontrolled resource consumption refers to a software vulnerability where a attacker or system... High Unreviewed

CVE-2024-36462 was published Aug 12, 2024

In the Linux kernel, the following vulnerability has been resolved: wireguard: allowedips: avoid... Moderate Unreviewed

CVE-2024-42247 was published Aug 7, 2024

In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci: Fix max_seg_size... Moderate Unreviewed

CVE-2024-42242 was published Aug 7, 2024

In the Linux kernel, the following vulnerability has been resolved: mm/shmem: disable PMD-sized... Moderate Unreviewed

CVE-2024-42241 was published Aug 7, 2024

In the Linux kernel, the following vulnerability has been resolved: xdp: Remove WARN() from... Moderate Unreviewed

CVE-2024-42082 was published Jul 29, 2024

A malicious client can send many DNS messages over TCP, potentially causing the server to become... High Unreviewed

CVE-2024-0760 was published Jul 23, 2024

Resolver caches and authoritative zone databases that hold significant numbers of RRs for the... High Unreviewed

CVE-2024-1737 was published Jul 23, 2024

If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a ... High Unreviewed

CVE-2024-1975 was published Jul 23, 2024

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix overrunning... Moderate Unreviewed

CVE-2024-41009 was published Jul 17, 2024

In multiple functions of ShortcutService.java, there is a possible persistent DOS due to resource... Moderate Unreviewed

CVE-2024-31314 was published Jul 9, 2024

A denial-of-service attack is possible through the execution functionality of KNIME Business Hub... High Unreviewed

CVE-2024-6598 was published Jul 9, 2024

Due to large allocation checks in Angle for GLSL shaders being too lenient an out-of-bounds... Moderate Unreviewed

CVE-2024-6600 was published Jul 9, 2024

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).... Moderate Unreviewed

CVE-2024-39876 was published Jul 9, 2024

In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix vmalloc... Moderate Unreviewed

CVE-2024-39474 was published Jul 5, 2024

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: do not call... Moderate Unreviewed

CVE-2024-39477 was published Jul 5, 2024

Previous 1 2 3 4 5 … 22 23 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

571 advisories