GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,532 advisories
Filter by severity
An issue was discovered in Technitium 11.0.2. There is a vulnerability (called BadDNS) in DNS...
High
Unreviewed
CVE-2023-28451
was published
Sep 18, 2024
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify...
Moderate
Unreviewed
CVE-2024-8892
was published
Sep 18, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7,...
High
Unreviewed
CVE-2024-44169
was published
Sep 17, 2024
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS...
High
Unreviewed
CVE-2024-44160
was published
Sep 17, 2024
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in...
High
Unreviewed
CVE-2024-40841
was published
Sep 17, 2024
This issue was addressed through improved state management. This issue is fixed in iOS 18 and...
High
Unreviewed
CVE-2024-27874
was published
Sep 17, 2024
DHCP Server Service Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38236
was published
Sep 10, 2024
A vulnerability has been identified in SIMATIC S7-200 SMART CPU CR40 (6ES7288-1CR40-0AA0) (All...
High
Unreviewed
CVE-2024-43647
was published
Sep 10, 2024
PingCAP TiDB v8.1.0 was discovered to contain a buffer overflow via the component (*Column)...
Moderate
Unreviewed
CVE-2024-41434
was published
Sep 3, 2024
A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions prior...
Moderate
Unreviewed
CVE-2024-8041
was published
Aug 22, 2024
Mattermost versions 9.5.x <= 9.5.7 and 9.10.x <= 9.10.0 fail to time limit and size limit the CA...
Moderate
Unreviewed
CVE-2024-39810
was published
Aug 22, 2024
The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command...
Critical
Unreviewed
CVE-2024-45163
was published
Aug 22, 2024
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input...
Critical
Unreviewed
CVE-2024-45166
was published
Aug 22, 2024
There is a LOW severity vulnerability affecting CPython, specifically the
'http.cookies' standard...
High
Unreviewed
CVE-2024-7592
was published
Aug 19, 2024
ida64.dll in Hex-Rays IDA Pro through 8.4 crashes when there is a section that has many jumps...
Critical
Unreviewed
CVE-2024-44083
was published
Aug 19, 2024
An issue in Silverpeas v.6.4.2 and lower allows a remote attacker to cause a denial of service...
Moderate
Unreviewed
CVE-2024-42849
was published
Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an...
Moderate
Unreviewed
CVE-2024-5210
was published
Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an...
Moderate
Unreviewed
CVE-2024-4782
was published
Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an...
Moderate
Unreviewed
CVE-2024-6004
was published
Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an...
Moderate
Unreviewed
CVE-2024-4781
was published
Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an...
Moderate
Unreviewed
CVE-2024-5209
was published
Aug 16, 2024
Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the delno parameter in...
High
Unreviewed
CVE-2024-42981
was published
Aug 15, 2024
Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the page parameter in...
High
Unreviewed
CVE-2024-42980
was published
Aug 15, 2024
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the Go parameter in...
High
Unreviewed
CVE-2024-42950
was published
Aug 15, 2024
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the mit_pptpusrpw...
High
Unreviewed
CVE-2024-42951
was published
Aug 15, 2024
ProTip!
Advisories are also available from the
GraphQL API