GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,413

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,269 advisories

Filter by severity

Sort by

Least recently updated

A flaw was found in kube-controller-manager. This issue occurs when the initial application of a... High Unreviewed

CVE-2024-0793 was published Nov 17, 2024

The WinVerifyTrust function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows... High Unreviewed

CVE-2013-3900 was published May 3, 2022

Valid Host header field can cause Apache Traffic Server to crash on some platforms. This issue... High Unreviewed

CVE-2024-50305 was published Nov 14, 2024

Improper Input Validation vulnerability in Apache Traffic Server. This issue affects Apache... High Unreviewed

CVE-2024-38479 was published Nov 14, 2024

Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may... High Unreviewed

CVE-2024-41167 was published Nov 13, 2024

Improper input validation in the Intel(R) Server Board S2600ST Family BIOS and Firmware Update... High Unreviewed

CVE-2024-36282 was published Nov 13, 2024

Improper input validation in some Intel(R) Neural Compressor software before version v3.0 may... High Unreviewed

CVE-2024-28028 was published Nov 13, 2024

Improper input validation in some Intel(R) CIP software before version 2.4.10852 may allow a... High Unreviewed

CVE-2024-36482 was published Nov 13, 2024

Improper input validation in UEFI firmware for some Intel(R) Server S2600BPBR may allow a... High Unreviewed

CVE-2024-31154 was published Nov 13, 2024

Improper input validation in UEFI firmware in some Intel(R) Server Board S2600BP Family may allow... High Unreviewed

CVE-2024-31158 was published Nov 13, 2024

CWE-20: Improper Input Validation vulnerability exists that could lead to loss of confidentiality... High Unreviewed

CVE-2024-8936 was published Nov 13, 2024

HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the... High Unreviewed

CVE-2024-31309 was published Apr 10, 2024

Improper input validation in the NPU driver could allow an attacker to supply a specially crafted... High Unreviewed

CVE-2024-21976 was published Nov 12, 2024

Improper input validation in the NPU driver could allow an attacker to supply a specially crafted... High Unreviewed

CVE-2024-21975 was published Nov 12, 2024

A Remote Code Execution vulnerability exists in the affected product. The vulnerability requires... High Unreviewed

CVE-2024-10944 was published Nov 12, 2024

Microsoft Word Security Feature Bypass Vulnerability High Unreviewed

CVE-2024-49033 was published Nov 12, 2024

Improper input validation in the NPU driver could allow an attacker to supply a specially crafted... High Unreviewed

CVE-2024-21974 was published Nov 12, 2024

Account users in Apache CloudStack by default are allowed to register templates to be downloaded... High Unreviewed

CVE-2024-50386 was published Nov 12, 2024

A remote code execution vulnerability exists in the affected product. The vulnerability allows... High Unreviewed

CVE-2024-37365 was published Nov 12, 2024

A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All... High Unreviewed

CVE-2024-50557 was published Nov 12, 2024

A user controlled parameter related to SMTP test functionality is not correctly validated making... High Unreviewed

CVE-2021-31987 was published May 24, 2022

A user controlled parameter related to SMTP test functionality is not correctly validated making... High Unreviewed

CVE-2021-31988 was published May 24, 2022

A vulnerability in the External Agent Assignment Service (EAAS) feature of Cisco Enterprise Chat... High Unreviewed

CVE-2024-20484 was published Nov 6, 2024

The LevelOne WBR-6012 router firmware R0.40e6 suffers from an input validation vulnerability... High Unreviewed

CVE-2024-33700 was published Oct 30, 2024

mudler/LocalAI version 2.17.1 allows for arbitrary file write due to improper handling of... High Unreviewed

CVE-2024-6868 was published Oct 29, 2024

Previous 1 2 3 4 5 … 170 171 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,269 advisories