Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,201
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,702
NuGet
660
pip
3,328
Pub
11
RubyGems
883
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

809 advisories

Loading
Spring Security vulnerable to Authorization Bypass of Static Resources in WebFlux Applications Critical
CVE-2024-38821 was published for org.springframework.security:spring-security-web (Maven) Oct 28, 2024
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service ... High Unreviewed
CVE-2024-7807 was published Oct 29, 2024
Due to large allocation checks in Angle for GLSL shaders being too lenient an out-of-bounds... Moderate Unreviewed
CVE-2024-6600 was published Jul 9, 2024
A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to... Moderate Unreviewed
CVE-2024-50311 was published Oct 22, 2024
Denial of Service in Connect2id Nimbus JOSE+JWT High
CVE-2023-52428 was published for com.nimbusds:nimbus-jose-jwt (Maven) Feb 11, 2024
ebickle
A vulnerability in the SSH server of Cisco Adaptive Security Appliance (ASA) Software could allow... Moderate Unreviewed
CVE-2024-20526 was published Oct 23, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Data Dictionary). ... Moderate Unreviewed
CVE-2024-21060 was published Apr 17, 2024
On Crestron 3-Series Control Systems before 1.8001.0187, crafting and sending a specific BACnet... High Unreviewed
CVE-2023-38405 was published Jul 17, 2023
In the Linux kernel, the following vulnerability has been resolved: ACPI: processor_idle: Fix... Moderate Unreviewed
CVE-2024-26894 was published Apr 17, 2024
Improper resource management in firmware of some Solidigm DC Products may allow an attacker to... Moderate Unreviewed
CVE-2024-47969 was published Oct 8, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_codec: Fix... Moderate Unreviewed
CVE-2023-52518 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: HID: sony: Fix a potential... Moderate Unreviewed
CVE-2023-52529 was published Mar 3, 2024
The O-RAN E2T I-Release Prometheus metric Increment function can crash in sctpThread.cpp for... High Unreviewed
CVE-2024-34046 was published Apr 30, 2024
Potential race conditions in IndexedDB could have caused memory corruption, leading to a... Critical Unreviewed
CVE-2024-10468 was published Oct 29, 2024
Mattermost Server vulnerable to application crash from attacker-generated large response Moderate
CVE-2024-47401 was published for github.com/mattermost/mattermost/server/v8 (Go) Oct 29, 2024
VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI... High Unreviewed
CVE-2024-22255 was published Mar 5, 2024
A vulnerability, which was classified as problematic, has been found in Tongda OA 2017 up to 11.7... Moderate Unreviewed
CVE-2024-10599 was published Nov 1, 2024
Wildfly vulnerable to denial of service Moderate
CVE-2024-4029 was published for org.wildfly:wildfly-domain-http (Maven) May 2, 2024
Improper resource initialization handling in firmware of some Solidigm DC Products may allow an... Critical Unreviewed
CVE-2024-47967 was published Oct 7, 2024
In the Linux kernel, the following vulnerability has been resolved: net: lantiq: fix memory... High Unreviewed
CVE-2021-47137 was published Mar 25, 2024
In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fix to cover... High Unreviewed
CVE-2024-34027 was published Jun 24, 2024
In the Linux kernel, the following vulnerability has been resolved: ipv6: fix race condition... Moderate Unreviewed
CVE-2024-35969 was published May 20, 2024
In multiple functions of ShortcutService.java, there is a possible persistent DOS due to resource... Moderate Unreviewed
CVE-2024-31314 was published Jul 9, 2024
An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a... High Unreviewed
CVE-2024-48809 was published Nov 4, 2024
In the Linux kernel, the following vulnerability has been resolved: crypto: sun8i-ss - Fix... Moderate Unreviewed
CVE-2021-47057 was published Mar 1, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database