Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

4,682 advisories

Loading
Improper Input Validation vulnerability in Apache Traffic Server. This issue affects Apache... High Unreviewed
CVE-2024-38479 was published Nov 14, 2024
Valid Host header field can cause Apache Traffic Server to crash on some platforms. This issue... High Unreviewed
CVE-2024-50305 was published Nov 14, 2024
Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may... High Unreviewed
CVE-2024-41167 was published Nov 13, 2024
Improper input validation in some Intel(R) CIP software before version 2.4.10852 may allow a... High Unreviewed
CVE-2024-36482 was published Nov 13, 2024
Improper input validation in the Intel(R) Server Board S2600ST Family BIOS and Firmware Update... High Unreviewed
CVE-2024-36282 was published Nov 13, 2024
Improper input validation in UEFI firmware in some Intel(R) Server Board S2600BP Family may allow... High Unreviewed
CVE-2024-31158 was published Nov 13, 2024
Improper input validation in UEFI firmware for some Intel(R) Server S2600BPBR may allow a... High Unreviewed
CVE-2024-31154 was published Nov 13, 2024
Improper input validation in some Intel(R) Neural Compressor software before version v3.0 may... High Unreviewed
CVE-2024-28028 was published Nov 13, 2024
CWE-20: Improper Input Validation vulnerability exists that could lead to loss of confidentiality... High Unreviewed
CVE-2024-8936 was published Nov 13, 2024
Microsoft Word Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-49033 was published Nov 12, 2024
Improper input validation in the NPU driver could allow an attacker to supply a specially crafted... High Unreviewed
CVE-2024-21974 was published Nov 12, 2024
A Remote Code Execution vulnerability exists in the affected product. The vulnerability requires... High Unreviewed
CVE-2024-10944 was published Nov 12, 2024
Improper input validation in the NPU driver could allow an attacker to supply a specially crafted... High Unreviewed
CVE-2024-21976 was published Nov 12, 2024
Improper input validation in the NPU driver could allow an attacker to supply a specially crafted... High Unreviewed
CVE-2024-21975 was published Nov 12, 2024
A remote code execution vulnerability exists in the affected product. The vulnerability allows... High Unreviewed
CVE-2024-37365 was published Nov 12, 2024
Account users in Apache CloudStack by default are allowed to register templates to be downloaded... High Unreviewed
CVE-2024-50386 was published Nov 12, 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All... High Unreviewed
CVE-2024-50557 was published Nov 12, 2024
A vulnerability in the External Agent Assignment Service (EAAS) feature of Cisco Enterprise Chat... High Unreviewed
CVE-2024-20484 was published Nov 6, 2024
The LevelOne WBR-6012 router firmware R0.40e6 suffers from an input validation vulnerability... High Unreviewed
CVE-2024-33700 was published Oct 30, 2024
mudler/LocalAI version 2.17.1 allows for arbitrary file write due to improper handling of... High Unreviewed
CVE-2024-6868 was published Oct 29, 2024
NVIDIA vGPU software contains a vulnerability in the GPU kernel driver of the vGPU Manager for... High Unreviewed
CVE-2024-0127 was published Oct 26, 2024
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability which could allow a... High Unreviewed
CVE-2024-0126 was published Oct 26, 2024
A vulnerability in the Remote Access VPN feature of Cisco Adaptive Security Appliance (ASA)... High Unreviewed
CVE-2024-20495 was published Oct 23, 2024
Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products. High Unreviewed
CVE-2024-6333 was published Oct 17, 2024
Docker Desktop before v4.34.3 allows RCE via unsanitized GitHub source link in Build view. High Unreviewed
CVE-2024-9348 was published Oct 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database