Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

93,924 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Prevent... High Unreviewed
CVE-2024-35847 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: mediatek:... High Unreviewed
CVE-2024-35856 was published May 17, 2024
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products,... High Unreviewed
CVE-2022-31645 was published Jun 14, 2023
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential... High Unreviewed
CVE-2024-35866 was published May 19, 2024
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam:... High Unreviewed
CVE-2024-35855 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: netfilter: validate user... High Unreviewed
CVE-2024-35896 was published May 19, 2024
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products,... High Unreviewed
CVE-2022-31644 was published Jun 14, 2023
Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-12836 was published Dec 30, 2024
Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-12834 was published Dec 30, 2024
Delta Electronics DRASimuCAD ICS File Parsing Out-Of-Bounds Write Remote Code Execution... High Unreviewed
CVE-2024-12835 was published Dec 30, 2024
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential... High Unreviewed
CVE-2024-35867 was published May 19, 2024
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential... High Unreviewed
CVE-2024-35868 was published May 19, 2024
In the Linux kernel, the following vulnerability has been resolved: mptcp: prevent BPF accessing... High Unreviewed
CVE-2024-35894 was published May 19, 2024
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products,... High Unreviewed
CVE-2022-31646 was published Jun 14, 2023
IBM WebSphere Automation 1.7.5 could allow a remote privileged user, who has authorized access to... High Unreviewed
CVE-2024-54181 was published Dec 30, 2024
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential... High Unreviewed
CVE-2024-35864 was published May 19, 2024
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential... High Unreviewed
CVE-2024-35863 was published May 19, 2024
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential... High Unreviewed
CVE-2024-35862 was published May 19, 2024
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential... High Unreviewed
CVE-2024-35861 was published May 19, 2024
Smadar SPS – CWE-327: Use of a Broken or Risky Cryptographic Algorithm High Unreviewed
CVE-2024-47921 was published Dec 30, 2024
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') High Unreviewed
CVE-2024-47917 was published Dec 30, 2024
Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation (... High Unreviewed
CVE-2024-47925 was published Dec 30, 2024
Boa web server – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site... High Unreviewed
CVE-2024-47924 was published Dec 30, 2024
Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor High Unreviewed
CVE-2024-47922 was published Dec 30, 2024
Tiki Wiki CMS – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site... High Unreviewed
CVE-2024-47920 was published Dec 30, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database