GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
261 advisories
Filter by severity
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.9 are susceptible to a Denial of...
Moderate
Unreviewed
CVE-2024-21994
was published
Nov 8, 2024
Marinus Pfund, member of the AXIS OS Bug Bounty Program,
has found the VAPIX API alwaysmulti.cgi...
Moderate
Unreviewed
CVE-2024-6509
was published
Sep 10, 2024
When parsing a multipart form (either explicitly with Request.ParseMultipartForm or implicitly...
Moderate
Unreviewed
CVE-2023-45290
was published
Mar 6, 2024
A security vulnerability in HPE IceWall Agent products could be exploited remotely to cause a...
Moderate
Unreviewed
CVE-2024-22436
was published
Mar 26, 2024
In the Linux kernel, the following vulnerability has been resolved:
crypto: sun8i-ss - Fix...
Moderate
Unreviewed
CVE-2021-47057
was published
Mar 1, 2024
In multiple functions of ShortcutService.java, there is a possible persistent DOS due to resource...
Moderate
Unreviewed
CVE-2024-31314
was published
Jul 9, 2024
In the Linux kernel, the following vulnerability has been resolved:
ipv6: fix race condition...
Moderate
Unreviewed
CVE-2024-35969
was published
May 20, 2024
A vulnerability, which was classified as problematic, has been found in Tongda OA 2017 up to 11.7...
Moderate
Unreviewed
CVE-2024-10599
was published
Nov 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
HID: sony: Fix a potential...
Moderate
Unreviewed
CVE-2023-52529
was published
Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: hci_codec: Fix...
Moderate
Unreviewed
CVE-2023-52518
was published
Mar 3, 2024
Improper resource management in firmware of some Solidigm DC Products may allow an attacker to...
Moderate
Unreviewed
CVE-2024-47969
was published
Oct 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
ACPI: processor_idle: Fix...
Moderate
Unreviewed
CVE-2024-26894
was published
Apr 17, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Data Dictionary). ...
Moderate
Unreviewed
CVE-2024-21060
was published
Apr 17, 2024
A vulnerability in the SSH server of Cisco Adaptive Security Appliance (ASA) Software could allow...
Moderate
Unreviewed
CVE-2024-20526
was published
Oct 23, 2024
A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to...
Moderate
Unreviewed
CVE-2024-50311
was published
Oct 22, 2024
Due to large allocation checks in Angle for GLSL shaders being too lenient an out-of-bounds...
Moderate
Unreviewed
CVE-2024-6600
was published
Jul 9, 2024
By sending a specific reset UDS request via OBDII port of Skoda vehicles, it is possible to cause...
Moderate
Unreviewed
CVE-2023-28899
was published
Jan 12, 2024
An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 17.3.6, 17.4...
Moderate
Unreviewed
CVE-2024-6826
was published
Oct 24, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is...
Moderate
Unreviewed
CVE-2024-31880
was published
Oct 23, 2024
In some circumstances, a stale value could have been used for a global variable in WASM JIT...
Moderate
Unreviewed
CVE-2023-4046
was published
Aug 1, 2023
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could...
Moderate
Unreviewed
CVE-2023-47746
was published
Jan 22, 2024
Microsoft Communicator, and Communicator in Microsoft Office 2010 beta, allows remote attackers...
Moderate
Unreviewed
CVE-2008-5180
was published
May 17, 2022
When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request...
Moderate
Unreviewed
CVE-2023-45802
was published
Oct 23, 2023
An issue has been discovered in GitLab CE/EE affecting all versions before 16.10.6, version 16.11...
Moderate
Unreviewed
CVE-2024-2874
was published
May 23, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions...
Moderate
Unreviewed
CVE-2024-2818
was published
Mar 28, 2024
ProTip!
Advisories are also available from the
GraphQL API