GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
4,426 advisories
Filter by severity
Improper input validation in some Zoom clients may allow an authenticated user to conduct a...
Moderate
Unreviewed
CVE-2024-24690
was published
Feb 14, 2024
A partial DoS vulnerability has been detected in the Reports section, exploitable by a malicious...
Moderate
Unreviewed
CVE-2023-24015
was published
Aug 9, 2023
An authenticated administrator can upload a SAML configuration file with the wrong format, with...
Moderate
Unreviewed
CVE-2023-23903
was published
Aug 9, 2023
A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it...
Moderate
Unreviewed
CVE-2020-0618
was published
May 24, 2022
An Improper Input Validation vulnerability in the Product Update feature of Bitdefender Endpoint...
Moderate
Unreviewed
CVE-2021-3485
was published
May 24, 2022
Improper input validation in some Intel(R) RAID Web Console software all versions may allow an...
Moderate
Unreviewed
CVE-2024-34545
was published
Sep 16, 2024
A Cross-Site Scripting vulnerable identified in NetIQ Advance Authentication that impacts the...
Moderate
Unreviewed
CVE-2021-38122
was published
Aug 28, 2024
Windows Networking Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-38234
was published
Sep 10, 2024
Windows Standards-Based Storage Management Service Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-38230
was published
Sep 10, 2024
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions)....
Moderate
Unreviewed
CVE-2022-36363
was published
Oct 11, 2022
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Improper Input...
Moderate
Unreviewed
CVE-2024-42424
was published
Sep 10, 2024
Communication Wi-Fi subsystem within OpenHarmony-v3.1.4 and prior versions, OpenHarmony-v3.0.7...
Moderate
Unreviewed
CVE-2023-24465
was published
Mar 10, 2023
In vsp driver, there is a possible missing verification incorrect input. This could lead to local...
Moderate
Unreviewed
CVE-2023-52535
was published
Apr 8, 2024
Leanote version 2.7.0 allows obtaining arbitrary local files. This is possible
because the...
Moderate
Unreviewed
CVE-2024-0849
was published
Feb 7, 2024
SUPERAntiSpyware Pro X v10.0.1260 is vulnerable to kernel-level API parameters manipulation and...
Moderate
Unreviewed
CVE-2024-0788
was published
Jan 29, 2024
The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain...
Moderate
Unreviewed
CVE-2024-8445
was published
Sep 5, 2024
Vulnerability of background app permission management in the framework module. Successful...
Moderate
Unreviewed
CVE-2023-46763
was published
Nov 8, 2023
Access permission verification vulnerability in the camera driver module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-45446
was published
Sep 4, 2024
Access permission verification vulnerability in the WMS module
Impact: Successful exploitation of...
Moderate
Unreviewed
CVE-2024-45444
was published
Sep 4, 2024
Input verification vulnerability in the system service module
Impact: Successful exploitation of...
Moderate
Unreviewed
CVE-2024-45441
was published
Sep 4, 2024
IBM AIX's 7.3 Python implementation could allow a non-privileged local user to exploit a...
Moderate
Unreviewed
CVE-2023-45167
was published
Nov 10, 2023
A problem has been identified in the CloudStack additional VM configuration (extraconfig) feature...
Moderate
Unreviewed
CVE-2024-29008
was published
Apr 4, 2024
Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input...
Moderate
Unreviewed
CVE-2024-38303
was published
Aug 29, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation...
Moderate
Unreviewed
CVE-2024-41849
was published
Aug 23, 2024
Ericsson Packet Core Controller (PCC) contains a vulnerability in Access and Mobility Management...
Moderate
Unreviewed
CVE-2024-25009
was published
Aug 20, 2024
ProTip!
Advisories are also available from the
GraphQL API