Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

93,862 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: power: supply: rk817: Fix... High Unreviewed
CVE-2023-52571 was published Mar 3, 2024
If an attacked was given access to an instance with the admin or manager role there is no backend... High Unreviewed
CVE-2024-0795 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix OOB... High Unreviewed
CVE-2023-52565 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix a... High Unreviewed
CVE-2023-52531 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix UAF in... High Unreviewed
CVE-2023-52572 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix... High Unreviewed
CVE-2023-52530 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: net: bridge: use... High Unreviewed
CVE-2023-52578 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: ieee802154: ca8210: Fix a... High Unreviewed
CVE-2023-52510 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free... High Unreviewed
CVE-2023-52509 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: Do not call... High Unreviewed
CVE-2023-52515 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: tee: amdtee: fix use-after... High Unreviewed
CVE-2023-52503 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: x86/alternatives: Disable... High Unreviewed
CVE-2023-52504 was published Mar 3, 2024
Due to insufficient server-side validation, a successful exploit of this vulnerability could... High Unreviewed
CVE-2024-25063 was published Mar 2, 2024
A directory listing vulnerability in Customer Support System v1 allows attackers to list... High Unreviewed
CVE-2023-49545 was published Mar 2, 2024
In the Linux kernel, the following vulnerability has been resolved: habanalabs/gaudi: Fix a... High Unreviewed
CVE-2021-47081 was published Mar 2, 2024
Certain HP DesignJet print products are potentially vulnerable to information disclosure related... High Unreviewed
CVE-2024-1869 was published Mar 2, 2024
A remote, unauthenticated attacker may be able to send crafted messages to the web server of the... High Unreviewed
CVE-2024-22182 was published Mar 1, 2024
Previous versions of HP ThinPro (prior to HP ThinPro 8.0 SP 8) could potentially contain security... High Unreviewed
CVE-2024-1174 was published Mar 1, 2024
In Sante DICOM Viewer Pro versions 14.0.3 and prior, a user must open a malicious DICOM file,... High Unreviewed
CVE-2024-1453 was published Mar 1, 2024
Industrial Control Systems Network Protocol Parsers (ICSNPP) - Ethercat Zeek Plugin versions... High Unreviewed
CVE-2023-7242 was published Mar 1, 2024
Stupid Simple CMS v1.2.4 was discovered to contain a Cross-Site Request Forgery (CSRF) via ... High Unreviewed
CVE-2024-27689 was published Mar 1, 2024
In OpenBSD 7.4 before errata 002 and OpenBSD 7.3 before errata 019, a network buffer that had to... High Unreviewed
CVE-2023-52558 was published Mar 1, 2024
In OpenBSD 7.3 before errata 016, npppd(8) could crash by a l2tp message which has an AVP ... High Unreviewed
CVE-2023-52557 was published Mar 1, 2024
Linksys E2000 Ver.1.0.06 build 1 is vulnerable to authentication bypass via the position.js file. High Unreviewed
CVE-2024-27497 was published Mar 1, 2024
Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain(s) a Stored Cross-Site... High Unreviewed
CVE-2024-24907 was published Mar 1, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database