GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,649 advisories
Filter by severity
The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain...
Moderate
Unreviewed
CVE-2024-8445
was published
Sep 5, 2024
An issue in Vypor Attack API System v.1.0 allows a remote attacker to execute arbitrary code via...
Critical
Unreviewed
CVE-2024-44808
was published
Sep 4, 2024
Access permission verification vulnerability in the camera driver module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-45446
was published
Sep 4, 2024
Access permission verification vulnerability in the WMS module
Impact: Successful exploitation of...
Moderate
Unreviewed
CVE-2024-45444
was published
Sep 4, 2024
Input verification vulnerability in the system service module
Impact: Successful exploitation of...
Moderate
Unreviewed
CVE-2024-45441
was published
Sep 4, 2024
A remote code execution (RCE) vulnerability exists in the Pi Camera project, version 1.0,...
Critical
Unreviewed
CVE-2024-44809
was published
Sep 4, 2024
VMware Fusion (13.x before 13.6) contains a code-execution vulnerability due to the usage of an...
High
Unreviewed
CVE-2024-38811
was published
Sep 3, 2024
Cryptographic issue while parsing RSA keys in COBR format.
High
Unreviewed
CVE-2024-23362
was published
Sep 2, 2024
Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input...
Moderate
Unreviewed
CVE-2024-38303
was published
Aug 29, 2024
A Cross-Site Scripting vulnerable identified in NetIQ Advance Authentication that impacts the...
Moderate
Unreviewed
CVE-2021-38122
was published
Aug 28, 2024
Improper Input Validation vulnerability in OpenText NetIQ Access Manager leads to Cross-Site...
High
Unreviewed
CVE-2024-4554
was published
Aug 28, 2024
A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™...
Critical
Unreviewed
CVE-2024-7988
was published
Aug 26, 2024
Improper Input Validation vulnerability in Hillstone Networks Hillstone Networks Web Application...
Critical
Unreviewed
CVE-2024-8073
was published
Aug 26, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation...
Moderate
Unreviewed
CVE-2024-41849
was published
Aug 23, 2024
Ezviz Internet PT Camera CS-CV246 D15655150 allows an unauthenticated host to access its live...
Critical
Unreviewed
CVE-2024-42531
was published
Aug 23, 2024
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input...
Critical
Unreviewed
CVE-2024-45167
was published
Aug 22, 2024
Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84...
High
Unreviewed
CVE-2024-7977
was published
Aug 21, 2024
Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84...
High
Unreviewed
CVE-2024-7980
was published
Aug 21, 2024
This SMM vulnerability affects certain modules, allowing privileged attackers to execute...
High
Unreviewed
CVE-2024-33657
was published
Aug 21, 2024
Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Cross-Site...
High
Unreviewed
CVE-2020-11850
was published
Aug 21, 2024
Ericsson Packet Core Controller (PCC) contains a vulnerability in Access and Mobility Management...
Moderate
Unreviewed
CVE-2024-25009
was published
Aug 20, 2024
A security issue was discovered in ingress-nginx where an actor with permission to create Ingress...
High
Unreviewed
CVE-2024-7646
was published
Aug 16, 2024
Ericsson RAN Compute and Site Controller 6610 contains a vulnerability in the Control System...
Moderate
Unreviewed
CVE-2024-25008
was published
Aug 16, 2024
CVE-2024-7507 IMPACT
A denial-of-service vulnerability exists in the affected products. This...
High
Unreviewed
CVE-2024-7507
was published
Aug 14, 2024
CVE-2024-7515 IMPACT
A denial-of-service vulnerability exists in the affected products. A...
High
Unreviewed
CVE-2024-7515
was published
Aug 14, 2024
ProTip!
Advisories are also available from the
GraphQL API