GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
20 advisories
Filter by severity
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input...
Critical
Unreviewed
CVE-2024-45166
was published
Aug 22, 2024
The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command...
Critical
Unreviewed
CVE-2024-45163
was published
Aug 22, 2024
ida64.dll in Hex-Rays IDA Pro through 8.4 crashes when there is a section that has many jumps...
Critical
Unreviewed
CVE-2024-44083
was published
Aug 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
clk: bcm: dvp: Assign ->num...
Critical
Unreviewed
CVE-2024-39462
was published
Jun 25, 2024
In the Linux kernel, the following vulnerability has been resolved:
ASoC: codecs: wcd938x: fix...
Critical
Unreviewed
CVE-2022-48716
was published
Jun 20, 2024
A denial of service vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior....
Critical
Unreviewed
CVE-2024-4549
was published
May 6, 2024
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in...
Critical
Unreviewed
CVE-2024-23265
was published
Mar 8, 2024
Through the exploitation of active user sessions, an attacker could send custom requests to...
Critical
Unreviewed
CVE-2023-50707
was published
Dec 20, 2023
The DP module has a service hijacking vulnerability.Successful exploitation of this vulnerability...
Critical
Unreviewed
CVE-2023-41294
was published
Sep 25, 2023
Vulnerability discovered is related to the peer-to-peer (p2p) communications, attackers can craft...
Critical
Unreviewed
CVE-2023-30769
was published
Apr 17, 2023
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5...
Critical
Unreviewed
CVE-2023-28507
was published
Mar 29, 2023
Certain General Electric Renewable Energy products allow attackers to use a code to trigger a...
Critical
Unreviewed
CVE-2022-24118
was published
Dec 26, 2022
Resource allocation error while playing the video whose dimensions are more than supported...
Critical
Unreviewed
CVE-2019-2259
was published
May 24, 2022
Index of array is processed in a wrong way inside a while loop and result in invalid index (-1 or...
Critical
Unreviewed
CVE-2018-11936
was published
May 24, 2022
The i_zval_ptr_dtor function in Zend/zend_variables.h in PHP 7.1.5 allows attackers to cause a...
Critical
Unreviewed
CVE-2017-9119
was published
May 14, 2022
Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow remote attackers to cause a...
Critical
Unreviewed
CVE-2018-19282
was published
May 14, 2022
The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a...
Critical
Unreviewed
CVE-2017-1000378
was published
May 13, 2022
In IoTivity through 1.3.1, the CoAP server interface can be used for Distributed Denial of...
Critical
Unreviewed
CVE-2019-9750
was published
May 13, 2022
StarWind iSCSI SAN before 6.0 build 2013-03-20 allows a memory leak.
Critical
Unreviewed
CVE-2013-20004
was published
Feb 12, 2022
There is an Uncontrolled resource consumption vulnerability in the display module in smartphones....
Critical
Unreviewed
CVE-2021-40011
was published
Jan 11, 2022
ProTip!
Advisories are also available from the
GraphQL API