Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

100 advisories

Loading
In OPPO Store APP, there's a possible escalation of privilege due to improper input validation. High Unreviewed
CVE-2024-1610 was published Dec 18, 2024
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. High Unreviewed
CVE-2024-1714 was published Feb 21, 2024
NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling... Moderate Unreviewed
CVE-2024-8508 was published Oct 3, 2024
IBM InfoSphere Information Server 11.7 could allow an authenticated user to GUI to not load or... Moderate Unreviewed
CVE-2024-52901 was published Dec 12, 2024
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 2100, 1280,... High Unreviewed
CVE-2024-39343 was published Dec 2, 2024
The HTTP server in Mongoose before 7.10 accepts requests containing negative Content-Length headers. High Unreviewed
CVE-2023-34188 was published Jun 23, 2023
Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet... High Unreviewed
CVE-2024-47257 was published Nov 26, 2024
Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote... Moderate Unreviewed
CVE-2024-9369 was published Nov 27, 2024
panic on parsing crafted phonenumber inputs Critical
CVE-2024-39697 was published for phonenumber (Rust) Jul 9, 2024
rubdos
Django Denial-of-service in django.utils.text.Truncator High
CVE-2023-43665 was published for Django (pip) Nov 3, 2023
A memory corruption vulnerability exists in the affected products when parsing DFT files. Local... High Unreviewed
CVE-2024-6068 was published Nov 14, 2024
Missing validation in shape inference for `Dequantize` Moderate
CVE-2021-37677 was published for tensorflow (pip) Aug 25, 2021
Incomplete validation in `MaxPoolGrad` Moderate
CVE-2021-37674 was published for tensorflow (pip) Aug 25, 2021
An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows... Moderate Unreviewed
CVE-2024-48290 was published Nov 7, 2024
Abort caused by allocating a vector that is too large in Tensorflow Moderate
CVE-2022-23580 was published for tensorflow (pip) Feb 7, 2022
Faulty input validation in the core of Apache allows malicious or exploitable backend/content... High Unreviewed
CVE-2023-38709 was published Apr 4, 2024
Improper input validation in SMU may allow an attacker with privileges and a compromised physical... Low Unreviewed
CVE-2023-31304 was published Aug 13, 2024
In SecurityCommand message after as security has been actived., there is a possible improper... Moderate Unreviewed
CVE-2023-52343 was published Apr 8, 2024
Improper input validation in Power Management Firmware (PMFW) may allow an attacker with... Moderate Unreviewed
CVE-2023-31310 was published Aug 13, 2024
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site... Moderate Unreviewed
CVE-2022-31629 was published Sep 29, 2022
Transaction validity oversight in pallet-ethereum Moderate
CVE-2021-39193 was published for pallet-ethereum (Rust) Sep 1, 2021
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC... Moderate Unreviewed
CVE-2024-7316 was published Oct 18, 2024
Denial-of-service (DoS) vulnerability due to improper validation of specified type of input issue... High Unreviewed
CVE-2023-38744 was published Aug 3, 2023
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed
CVE-2021-31346 was published May 24, 2022
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed
CVE-2021-31345 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database