GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
63 advisories
Filter by severity
There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with...
Moderate
Unreviewed
CVE-2024-11407
was published
Nov 26, 2024
Improper access control vulnerability in M-Files Aino in versions before 24.10 allowed an...
Moderate
Unreviewed
CVE-2024-11176
was published
Nov 20, 2024
A flaw in DRBG number generation within the Network Security Services (NSS) library where the...
Moderate
Unreviewed
CVE-2017-5462
was published
May 13, 2022
An issue in Ethereum Blockchain v0.1.1+commit.6ff4cd6 cause the balance to be zeroed out when the...
Moderate
Unreviewed
CVE-2023-36980
was published
Sep 11, 2023
An issue in the oneflow.permute component of OneFlow-Inc. Oneflow v0.9.1 causes an incorrect...
Critical
Unreviewed
CVE-2024-36736
was published
Jun 6, 2024
Wrap-around error in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and...
Critical
Unreviewed
CVE-2024-23981
was published
Aug 14, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdkfd: don't allow...
High
Unreviewed
CVE-2024-41011
was published
Jul 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
btrfs: zoned: fix...
Moderate
Unreviewed
CVE-2024-42231
was published
Jul 30, 2024
Incorrect Calculation vulnerability in Renesas arm-trusted-firmware allows Local Execution of...
High
Unreviewed
CVE-2024-6287
was published
Jun 24, 2024
ngiflib 0.4 has a heap-based buffer overflow in WritePixels() in ngiflib.c when called from...
Moderate
Unreviewed
CVE-2019-16347
was published
May 24, 2022
ngiflib 0.4 has a heap-based buffer overflow in WritePixel() in ngiflib.c when called from...
Moderate
Unreviewed
CVE-2019-16346
was published
May 24, 2022
Incorrect calculation in microcode keying mechanism for some Intel(R) Xeon(R) D Processors with...
Moderate
Unreviewed
CVE-2023-43490
was published
Mar 14, 2024
A vulnerability was discovered in the Rockwell Automation Armor PowerFlex device when the...
High
Unreviewed
CVE-2023-2423
was published
Aug 8, 2023
VirtualSquare picoTCP (aka PicoTCP-NG) through 2.1 lacks certain size calculations before...
High
Unreviewed
CVE-2023-35848
was published
Jun 19, 2023
A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font-...
Moderate
Unreviewed
CVE-2023-3161
was published
Jun 12, 2023
library/glob.html in the Python 2 and 3 documentation before 2016 has potentially misleading...
High
Unreviewed
CVE-2019-17514
was published
May 24, 2022
In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to...
High
Unreviewed
CVE-2020-0022
was published
May 24, 2022
An unauthenticated attacker can cause a denial-of-service to the following products: Ivanti...
High
Unreviewed
CVE-2022-35258
was published
Dec 6, 2022
Incorrect Calculation and Use of Insufficiently Random Values in Python
Moderate
Unreviewed
CVE-2020-14422
was published
May 11, 2021
Incorrect calculation in microcode keying mechanism for some 3rd Generation Intel(R) Xeon(R)...
Moderate
Unreviewed
CVE-2022-33972
was published
Feb 16, 2023
net/sctp/sm_make_chunk.c in the Linux kernel before 2.6.34, when addip_enable and auth_enable are...
Moderate
Unreviewed
CVE-2011-1573
was published
May 13, 2022
A flaw was found in the Linux kernel's handling of clearing SELinux attributes on /proc/pid/attr...
Moderate
Unreviewed
CVE-2017-2618
was published
May 13, 2022
On certain hardware BIG-IP platforms, in version 15.1.x before 15.1.4 and 14.1.x before 14.1.3,...
High
Unreviewed
CVE-2022-23011
was published
Jan 26, 2022
On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all...
Moderate
Unreviewed
CVE-2022-23028
was published
Jan 26, 2022
In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.7, and 14.1...
High
Unreviewed
CVE-2022-36795
was published
Oct 20, 2022
ProTip!
Advisories are also available from the
GraphQL API