Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

38 advisories

Loading
An issue in the 690b33e1-0462-4e84-9bea-c7552b45432a.sys component of Asus GPU Tweak II Program... High Unreviewed
CVE-2024-55410 was published Jan 7, 2025
An issue in the DeviceloControl function of ITE Tech. Inc ITE IO Access v1.0.0.0 allows attackers... High Unreviewed
CVE-2024-55407 was published Jan 6, 2025
In Modem, there is a possible system crash due to improper input validation. This could lead to... High Unreviewed
CVE-2024-20149 was published Jan 6, 2025
In OPPO Store APP, there's a possible escalation of privilege due to improper input validation. High Unreviewed
CVE-2024-1610 was published Dec 18, 2024
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 2100, 1280,... High Unreviewed
CVE-2024-39343 was published Dec 2, 2024
Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet... High Unreviewed
CVE-2024-47257 was published Nov 26, 2024
A memory corruption vulnerability exists in the affected products when parsing DFT files. Local... High Unreviewed
CVE-2024-6068 was published Nov 14, 2024
The ctl_report_supported_opcodes function did not sufficiently validate a field provided by... High Unreviewed
CVE-2024-42416 was published Sep 5, 2024
A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow... High Unreviewed
CVE-2024-5102 was published Jun 10, 2024
Improper Validation of Specified Quantity in Input vulnerability in Tips and Tricks HQ WP Express... High Unreviewed
CVE-2024-30527 was published May 17, 2024
Faulty input validation in the core of Apache allows malicious or exploitable backend/content... High Unreviewed
CVE-2023-38709 was published Apr 4, 2024
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. High Unreviewed
CVE-2024-1714 was published Feb 21, 2024
Denial-of-service (DoS) vulnerability due to improper validation of specified type of input issue... High Unreviewed
CVE-2023-38744 was published Aug 3, 2023
The HTTP server in Mongoose before 7.10 accepts requests containing negative Content-Length headers. High Unreviewed
CVE-2023-34188 was published Jun 23, 2023
A denial of service attack might be launched against the server if an unusually lengthy password ... High Unreviewed
CVE-2023-30082 was published Jun 14, 2023
Due to URL previews in the network panel of developer tools improperly storing URLs, query... High Unreviewed
CVE-2023-25731 was published Jun 2, 2023
An issue was found in Action Launcher v50.5 allows an attacker to escalate privilege via... High Unreviewed
CVE-2022-47029 was published May 30, 2023
A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the... High Unreviewed
CVE-2022-4904 was published Mar 7, 2023
For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling... High Unreviewed
CVE-2021-28510 was published Jan 26, 2023
The demon image annotation plugin for WordPress is vulnerable to improper input validation in... High Unreviewed
CVE-2022-4171 was published Dec 13, 2022
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V3.0.1),... High Unreviewed
CVE-2021-44693 was published Dec 13, 2022
Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series... High Unreviewed
CVE-2022-20689 was published Dec 12, 2022
Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series... High Unreviewed
CVE-2022-20690 was published Dec 12, 2022
Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP... High Unreviewed
CVE-2022-2277 was published Sep 15, 2022
libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds... High Unreviewed
CVE-2022-2868 was published Aug 18, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database