Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

4,715 advisories

Loading
HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the... High Unreviewed
CVE-2024-31309 was published Apr 10, 2024
Improper input validation in the NPU driver could allow an attacker to supply a specially crafted... High Unreviewed
CVE-2024-21976 was published Nov 12, 2024
Improper input validation in the NPU driver could allow an attacker to supply a specially crafted... High Unreviewed
CVE-2024-21975 was published Nov 12, 2024
A Remote Code Execution vulnerability exists in the affected product. The vulnerability requires... High Unreviewed
CVE-2024-10944 was published Nov 12, 2024
Microsoft Word Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-49033 was published Nov 12, 2024
Improper input validation in the NPU driver could allow an attacker to supply a specially crafted... High Unreviewed
CVE-2024-21974 was published Nov 12, 2024
Account users in Apache CloudStack by default are allowed to register templates to be downloaded... High Unreviewed
CVE-2024-50386 was published Nov 12, 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All... High Unreviewed
CVE-2024-50557 was published Nov 12, 2024
A remote code execution vulnerability exists in the affected product. The vulnerability allows... High Unreviewed
CVE-2024-37365 was published Nov 12, 2024
A user controlled parameter related to SMTP test functionality is not correctly validated making... High Unreviewed
CVE-2021-31987 was published May 24, 2022
A user controlled parameter related to SMTP test functionality is not correctly validated making... High Unreviewed
CVE-2021-31988 was published May 24, 2022
A vulnerability in the External Agent Assignment Service (EAAS) feature of Cisco Enterprise Chat... High Unreviewed
CVE-2024-20484 was published Nov 6, 2024
Authentication bypass in dtale High
CVE-2024-3408 was published for dtale (pip) Jun 6, 2024
Arbitrary file deletion in litellm High
CVE-2024-4888 was published for litellm (pip) Jun 6, 2024
Drupal has open redirect vulnerability in the Overlay module High
CVE-2013-6389 was published for drupal/drupal (Composer) May 17, 2022
Rudloff
The LevelOne WBR-6012 router firmware R0.40e6 suffers from an input validation vulnerability... High Unreviewed
CVE-2024-33700 was published Oct 30, 2024
mudler/LocalAI version 2.17.1 allows for arbitrary file write due to improper handling of... High Unreviewed
CVE-2024-6868 was published Oct 29, 2024
Denial of Service in Tensorflow High
CVE-2020-15203 was published for tensorflow (pip) Sep 25, 2020
Segfault in Tensorflow High
CVE-2020-15200 was published for tensorflow (pip) Sep 25, 2020
Segmentation fault in tensorflow-lite High
CVE-2020-15210 was published for tensorflow (pip) Sep 25, 2020
Denial of Service in Tensorflow High
CVE-2020-15206 was published for tensorflow (pip) Sep 25, 2020
Denial of Service in Tensorflow High
CVE-2020-15199 was published for tensorflow (pip) Sep 25, 2020
Improper Input Validation in Google TensorFlow High
CVE-2018-7577 was published for tensorflow (pip) Apr 30, 2019
SaltStack Salt is vulnerable Arbitrary Directory Access High
CVE-2020-11652 was published for salt (pip) May 24, 2022
SaltStack MITM SSH attack in salt-ssh High
CVE-2013-4436 was published for salt (pip) May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database