Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

4,682 advisories

Loading
Improper input validation in the Central Filestore in Ivanti Avalanche 6.3.1 allows a remote... High Unreviewed
CVE-2024-37373 was published Aug 14, 2024
Windows Common Log File System Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38196 was published Aug 13, 2024
Azure Stack Hub Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38201 was published Aug 13, 2024
Microsoft Project Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38189 was published Aug 13, 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All... High Unreviewed
CVE-2024-41976 was published Aug 13, 2024
Apache DolphinScheduler: RCE by arbitrary js execution High
CVE-2024-29831 was published for org.apache.dolphinscheduler:dolphinscheduler (Maven) Aug 12, 2024
Apache DolphinScheduler: Resource File Read And Write Vulnerability High
CVE-2024-30188 was published for org.apache.dolphinscheduler:dolphinscheduler (Maven) Aug 12, 2024
Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533... High Unreviewed
CVE-2024-7005 was published Aug 6, 2024
An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command... High Unreviewed
CVE-2024-23483 was published Aug 6, 2024
A vulnerability has been identified in Omnivise T3000 Application Server (All versions). The... High Unreviewed
CVE-2024-38879 was published Aug 2, 2024
The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not... High Unreviewed
CVE-2024-40721 was published Aug 2, 2024
The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not... High Unreviewed
CVE-2024-40720 was published Aug 2, 2024
A path hijacking vulnerability was reported in Lenovo Driver Manager prior to version 3.1.1307... High Unreviewed
CVE-2023-1577 was published Jul 31, 2024
Improper Input Validation vulnerability in Cato Networks SDP Client on Windows allows OS Command... High Unreviewed
CVE-2024-6973 was published Jul 31, 2024
Weave server API vulnerable to arbitrary file leak High
CVE-2024-7340 was published for weave (pip) Jul 31, 2024
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39950 was published Jul 31, 2024
A vulnerability has been found in Dahua products.Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39944 was published Jul 31, 2024
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39948 was published Jul 31, 2024
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39949 was published Jul 31, 2024
Invalid Accept-Encoding header can cause Apache Traffic Server to fail cache lookup and force... High Unreviewed
CVE-2024-35296 was published Jul 26, 2024
Apache Traffic Server accepts characters that are not allowed for HTTP field names and forwards... High Unreviewed
CVE-2023-38522 was published Jul 26, 2024
EvilVideo vulnerability allows sending malicious apps disguised as videos in Telegram for Android... High Unreviewed
CVE-2024-7014 was published Jul 23, 2024
Absent Input Validation in BinaryHttpParser High
CVE-2024-40642 was published for io.netty.incubator:netty-incubator-codec-bhttp (Maven) Jul 18, 2024
shombo
Insufficient data validation in Updater in Google Chrome prior to 120.0.6099.62 allowed a remote... High Unreviewed
CVE-2024-3173 was published Jul 17, 2024
An input validation vulnerability exists in the Rockwell Automation 5015 - AENFTXT when a... High Unreviewed
CVE-2024-6089 was published Jul 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database