GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,044
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
10,046 advisories
Filter by severity
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to upload...
Low
Unreviewed
CVE-2024-20528
was published
Nov 6, 2024
A vulnerability was found in mariazevedo88 travels-java-api up to 5.0.1 and classified as...
Low
Unreviewed
CVE-2024-10920
was published
Nov 6, 2024
Improper authorization in Settings prior to SMR Nov-2024 Release 1 allows physical attackers to...
Low
Unreviewed
CVE-2024-34682
was published
Nov 6, 2024
Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to...
Low
Unreviewed
CVE-2024-34675
was published
Nov 6, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: netconsole: fix wrong...
Low
Unreviewed
CVE-2024-50092
was published
Nov 5, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through out-of-bounds...
Low
Unreviewed
CVE-2024-47402
was published
Nov 5, 2024
A vulnerability, which was classified as problematic, has been found in Cosmote Greece What's Up...
Low
Unreviewed
CVE-2024-10748
was published
Nov 4, 2024
A vulnerability, which was classified as critical, was found in ThinkAdmin up to 6.1.67. Affected...
Low
Unreviewed
CVE-2024-10749
was published
Nov 4, 2024
When using Arm Cortex-M Security Extensions (CMSE), Secure stack
contents can be leaked to Non...
Low
Unreviewed
CVE-2024-7883
was published
Oct 31, 2024
A denial of service vulnerability exists in the Web Application functionality of LevelOne WBR...
Low
Unreviewed
CVE-2024-33623
was published
Oct 30, 2024
The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path...
Low
Unreviewed
CVE-2024-10228
was published
Oct 30, 2024
Profile files from TRO600 series radios are extracted in plain-text
and encrypted file formats....
Low
Unreviewed
CVE-2024-41156
was published
Oct 29, 2024
HCL Connections is vulnerable to an information disclosure vulnerability, due to an IBM WebSphere...
Low
Unreviewed
CVE-2024-30106
was published
Oct 29, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in...
Low
Unreviewed
CVE-2024-44222
was published
Oct 28, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7...
Low
Unreviewed
CVE-2024-44197
was published
Oct 28, 2024
The issue was addressed by restricting options offered on a locked device. This issue is fixed in...
Low
Unreviewed
CVE-2024-44265
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Low
Unreviewed
CVE-2024-44267
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Low
Unreviewed
CVE-2024-44275
was published
Oct 28, 2024
This issue was addressed through improved state management. This issue is fixed in iOS 18.1 and...
Low
Unreviewed
CVE-2024-44251
was published
Oct 28, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS...
Low
Unreviewed
CVE-2024-44123
was published
Oct 28, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS...
Low
Unreviewed
CVE-2024-40792
was published
Oct 28, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2024-27849
was published
Oct 28, 2024
This issue was addressed by restricting options offered on a locked device. This issue is fixed...
Low
Unreviewed
CVE-2024-40851
was published
Oct 28, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
Low
Unreviewed
CVE-2024-5532
was published
Oct 28, 2024
A bug in query analysis of certain complex self-referential $lookup subpipelines may result in...
Low
Unreviewed
CVE-2024-8013
was published
Oct 28, 2024
ProTip!
Advisories are also available from the
GraphQL API