GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,904 advisories
Filter by severity
Incorrect access control in the firmware update and download processes of Sylvania Smart Home v3...
High
Unreviewed
CVE-2024-48544
was published
Oct 24, 2024
Incorrect access control in the firmware update and download processes of Ruochan Smart v4.4.7...
High
Unreviewed
CVE-2024-48541
was published
Oct 24, 2024
Incorrect access control in the firmware update and download processes of Yamaha Headphones...
High
Unreviewed
CVE-2024-48542
was published
Oct 24, 2024
Incorrect access control in the firmware update and download processes of DreamCatcher Life v1.8...
High
Unreviewed
CVE-2024-48547
was published
Oct 24, 2024
Incorrect access control in the firmware update and download processes of IVY Smart v4.5.0 allows...
High
Unreviewed
CVE-2024-48545
was published
Oct 24, 2024
Incorrect access control in XIAO HE Smart 4.3.1 allows attackers to access sensitive information...
Moderate
Unreviewed
CVE-2024-48540
was published
Oct 24, 2024
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ...
Moderate
Unreviewed
CVE-2024-20482
was published
Oct 23, 2024
Archer Platform 2024.03 before version 2024.09 is affected by an API authorization bypass...
Moderate
Unreviewed
CVE-2024-49209
was published
Oct 22, 2024
The workflow component in Liferay Portal 7.3.2 through 7.4.3.111, and Liferay DXP 2023.Q4.0...
Critical
Unreviewed
CVE-2024-38002
was published
Oct 22, 2024
Archer Platform 2024.03 before version 2024.08 is affected by an authorization bypass...
Moderate
Unreviewed
CVE-2024-49208
was published
Oct 22, 2024
A vulnerability has been found in didi DDMQ 1.0 and classified as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-10173
was published
Oct 20, 2024
Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with...
High
Unreviewed
CVE-2024-29821
was published
Oct 19, 2024
Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with...
High
Unreviewed
CVE-2024-29213
was published
Oct 19, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone...
Moderate
Unreviewed
CVE-2024-20420
was published
Oct 16, 2024
Vulnerability in the Oracle Banking Liquidity Management product of Oracle Financial Services...
High
Unreviewed
CVE-2024-21285
was published
Oct 15, 2024
Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21268
was published
Oct 15, 2024
Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price...
High
Unreviewed
CVE-2024-21266
was published
Oct 15, 2024
Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite ...
High
Unreviewed
CVE-2024-21270
was published
Oct 15, 2024
Vulnerability in the Oracle Contract Lifecycle Management for Public Sector product of Oracle E...
High
Unreviewed
CVE-2024-21278
was published
Oct 15, 2024
Vulnerability in the PeopleSoft Enterprise HCM Global Payroll Core product of Oracle PeopleSoft ...
High
Unreviewed
CVE-2024-21283
was published
Oct 15, 2024
Vulnerability in the Oracle Field Service product of Oracle E-Business Suite (component: Field...
High
Unreviewed
CVE-2024-21271
was published
Oct 15, 2024
Vulnerability in the Oracle Service Contracts product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21280
was published
Oct 15, 2024
Vulnerability in the Oracle Banking Liquidity Management product of Oracle Financial Services...
High
Unreviewed
CVE-2024-21284
was published
Oct 15, 2024
Vulnerability in the Oracle Quoting product of Oracle E-Business Suite (component: User Interface...
High
Unreviewed
CVE-2024-21275
was published
Oct 15, 2024
Vulnerability in the Oracle MES for Process Manufacturing product of Oracle E-Business Suite ...
High
Unreviewed
CVE-2024-21277
was published
Oct 15, 2024
ProTip!
Advisories are also available from the
GraphQL API