GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
90,154 advisories
Filter by severity
eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via scan_folder.
High
Unreviewed
CVE-2024-46648
was published
Sep 20, 2024
Securepoint UTM before 12.6.5 mishandles OTP codes.
High
Unreviewed
CVE-2024-39340
was published
Jul 12, 2024
eNMS up to 4.7.1 is vulnerable to Directory Traversal via download/folder.
High
Unreviewed
CVE-2024-46649
was published
Sep 20, 2024
eNMS 4.0.0 is vulnerable to Directory Traversal via get_tree_files.
High
Unreviewed
CVE-2024-46645
was published
Sep 20, 2024
Sony XAV-AX5500 WMV/ASF Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability....
High
Unreviewed
CVE-2024-23934
was published
Sep 23, 2024
A flaw exists in VASA which allows users with access to a vSphere/ESXi VMware admin on a...
High
Unreviewed
CVE-2023-36628
was published
Oct 3, 2023
Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP...
High
Unreviewed
CVE-2022-2277
was published
Sep 15, 2022
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
High
Unreviewed
CVE-2024-7835
was published
Sep 23, 2024
Improper Authentication, Missing Authentication for Critical Function, Improper Authorization...
High
Unreviewed
CVE-2024-7015
was published
Sep 9, 2024
Server-Side Request Forgery (SSRF) vulnerability in Firsh Justified Image Grid allows Server Side...
High
Unreviewed
CVE-2024-43989
was published
Sep 23, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix out-of...
High
Unreviewed
CVE-2024-46725
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
VMCI: Fix use-after-free...
High
Unreviewed
CVE-2024-46738
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
binder: fix UAF caused by...
High
Unreviewed
CVE-2024-46740
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
misc: fastrpc: Fix double...
High
Unreviewed
CVE-2024-46741
was published
Sep 18, 2024
IBM OpenPages with Watson 8.3 and 9.0 could allow remote attacker to bypass security restrictions...
High
Unreviewed
CVE-2023-40683
was published
Jan 19, 2024
IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform...
High
Unreviewed
CVE-2023-50957
was published
Feb 10, 2024
An issue in Pure Data 0.54-0 and fixed in 0.54-1 allows a local attacker to escalate privileges...
High
Unreviewed
CVE-2023-47480
was published
Sep 20, 2024
Db2 for IBM i 7.2, 7.3, 7.4, and 7.5 infrastructure could allow a local user to gain elevated...
High
Unreviewed
CVE-2024-22346
was published
Mar 14, 2024
IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a local user to gain elevated...
High
Unreviewed
CVE-2023-47712
was published
May 14, 2024
IBM Security Verify Access Appliance 10.0.0 through 10.0.7 could allow a malicious actor to...
High
Unreviewed
CVE-2024-31872
was published
Apr 10, 2024
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 could allow an...
High
Unreviewed
CVE-2023-47142
was published
Feb 2, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: fix ucode out-of...
High
Unreviewed
CVE-2024-46723
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix out-of...
High
Unreviewed
CVE-2024-46724
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: fix mc_data out...
High
Unreviewed
CVE-2024-46722
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
ASoC: dapm: Fix UAF for...
High
Unreviewed
CVE-2024-46798
was published
Sep 18, 2024
ProTip!
Advisories are also available from the
GraphQL API