Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

20 advisories

Loading
The DP module has a service hijacking vulnerability.Successful exploitation of this vulnerability... Critical Unreviewed
CVE-2023-41294 was published Sep 25, 2023
ida64.dll in Hex-Rays IDA Pro through 8.4 crashes when there is a section that has many jumps... Critical Unreviewed
CVE-2024-44083 was published Aug 19, 2024
The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command... Critical Unreviewed
CVE-2024-45163 was published Aug 22, 2024
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input... Critical Unreviewed
CVE-2024-45166 was published Aug 22, 2024
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in... Critical Unreviewed
CVE-2024-23265 was published Mar 8, 2024
In the Linux kernel, the following vulnerability has been resolved: clk: bcm: dvp: Assign ->num... Critical Unreviewed
CVE-2024-39462 was published Jun 25, 2024
In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd938x: fix... Critical Unreviewed
CVE-2022-48716 was published Jun 20, 2024
A denial of service vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior.... Critical Unreviewed
CVE-2024-4549 was published May 6, 2024
Vulnerability discovered is related to the peer-to-peer (p2p) communications, attackers can craft... Critical Unreviewed
CVE-2023-30769 was published Apr 17, 2023
Resource allocation error while playing the video whose dimensions are more than supported... Critical Unreviewed
CVE-2019-2259 was published May 24, 2022
Index of array is processed in a wrong way inside a while loop and result in invalid index (-1 or... Critical Unreviewed
CVE-2018-11936 was published May 24, 2022
Through the exploitation of active user sessions, an attacker could send custom requests to... Critical Unreviewed
CVE-2023-50707 was published Dec 20, 2023
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5... Critical Unreviewed
CVE-2023-28507 was published Mar 29, 2023
There is an Uncontrolled resource consumption vulnerability in the display module in smartphones.... Critical Unreviewed
CVE-2021-40011 was published Jan 11, 2022
The i_zval_ptr_dtor function in Zend/zend_variables.h in PHP 7.1.5 allows attackers to cause a... Critical Unreviewed
CVE-2017-9119 was published May 14, 2022
Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow remote attackers to cause a... Critical Unreviewed
CVE-2018-19282 was published May 14, 2022
The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a... Critical Unreviewed
CVE-2017-1000378 was published May 13, 2022
In IoTivity through 1.3.1, the CoAP server interface can be used for Distributed Denial of... Critical Unreviewed
CVE-2019-9750 was published May 13, 2022
StarWind iSCSI SAN before 6.0 build 2013-03-20 allows a memory leak. Critical Unreviewed
CVE-2013-20004 was published Feb 12, 2022
Certain General Electric Renewable Energy products allow attackers to use a code to trigger a... Critical Unreviewed
CVE-2022-24118 was published Dec 26, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database