Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

90,154 advisories

Loading
eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via scan_folder. High Unreviewed
CVE-2024-46648 was published Sep 20, 2024
Securepoint UTM before 12.6.5 mishandles OTP codes. High Unreviewed
CVE-2024-39340 was published Jul 12, 2024
eNMS up to 4.7.1 is vulnerable to Directory Traversal via download/folder. High Unreviewed
CVE-2024-46649 was published Sep 20, 2024
eNMS 4.0.0 is vulnerable to Directory Traversal via get_tree_files. High Unreviewed
CVE-2024-46645 was published Sep 20, 2024
Sony XAV-AX5500 WMV/ASF Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-23934 was published Sep 23, 2024
A flaw exists in VASA which allows users with access to a vSphere/ESXi VMware admin on a... High Unreviewed
CVE-2023-36628 was published Oct 3, 2023
Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP... High Unreviewed
CVE-2022-2277 was published Sep 15, 2022
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed
CVE-2024-7835 was published Sep 23, 2024
Improper Authentication, Missing Authentication for Critical Function, Improper Authorization... High Unreviewed
CVE-2024-7015 was published Sep 9, 2024
Server-Side Request Forgery (SSRF) vulnerability in Firsh Justified Image Grid allows Server Side... High Unreviewed
CVE-2024-43989 was published Sep 23, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix out-of... High Unreviewed
CVE-2024-46725 was published Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved: VMCI: Fix use-after-free... High Unreviewed
CVE-2024-46738 was published Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF caused by... High Unreviewed
CVE-2024-46740 was published Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix double... High Unreviewed
CVE-2024-46741 was published Sep 18, 2024
IBM OpenPages with Watson 8.3 and 9.0 could allow remote attacker to bypass security restrictions... High Unreviewed
CVE-2023-40683 was published Jan 19, 2024
IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform... High Unreviewed
CVE-2023-50957 was published Feb 10, 2024
An issue in Pure Data 0.54-0 and fixed in 0.54-1 allows a local attacker to escalate privileges... High Unreviewed
CVE-2023-47480 was published Sep 20, 2024
Db2 for IBM i 7.2, 7.3, 7.4, and 7.5 infrastructure could allow a local user to gain elevated... High Unreviewed
CVE-2024-22346 was published Mar 14, 2024
IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a local user to gain elevated... High Unreviewed
CVE-2023-47712 was published May 14, 2024
IBM Security Verify Access Appliance 10.0.0 through 10.0.7 could allow a malicious actor to... High Unreviewed
CVE-2024-31872 was published Apr 10, 2024
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 could allow an... High Unreviewed
CVE-2023-47142 was published Feb 2, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix ucode out-of... High Unreviewed
CVE-2024-46723 was published Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix out-of... High Unreviewed
CVE-2024-46724 was published Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix mc_data out... High Unreviewed
CVE-2024-46722 was published Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved: ASoC: dapm: Fix UAF for... High Unreviewed
CVE-2024-46798 was published Sep 18, 2024
ProTip! Advisories are also available from the GraphQL API