GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,627
Composer 4,226
Erlang 31
GitHub Actions 19
Go 1,991
Maven 5,174
npm 3,708
NuGet 661
pip 3,339
Pub 11
RubyGems 884
Rust 846
Swift 36

Unreviewed advisories

All unreviewed 234,545

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

9,920 advisories

Filter by severity

Sort by

Least recently updated

A dynamic search for a prerequisite library could allow the possibility for an attacker to... Low Unreviewed

CVE-2024-30117 was published Oct 15, 2024

Exposure of CSRF tokens in query parameters on specific requests in Checkmk GmbH's Checkmk... Low Unreviewed

CVE-2024-38863 was published Oct 14, 2024

Improper buffer restrictions in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before... Low Unreviewed

CVE-2023-27307 was published Oct 10, 2024

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version... Low Unreviewed

CVE-2023-27303 was published Oct 10, 2024

Deserialization of untrusted data in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before... Low Unreviewed

CVE-2023-26592 was published Oct 10, 2024

Unchecked return value in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88... Low Unreviewed

CVE-2023-26591 was published Oct 10, 2024

Improper buffer restrictions in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before... Low Unreviewed

CVE-2023-27300 was published Oct 10, 2024

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version... Low Unreviewed

CVE-2023-26596 was published Oct 10, 2024

An issue has been discovered in GitLab EE affecting all versions starting from 16.6 prior to 17.2... Low Unreviewed

CVE-2024-9596 was published Oct 10, 2024

HCL Connections is vulnerable to an information disclosure vulnerability which could allow a user... Low Unreviewed

CVE-2024-30118 was published Oct 9, 2024

Dell AppSync Server, version 4.3 through 4.6, contains an XML External Entity Injection... Low Unreviewed

CVE-2024-39586 was published Oct 9, 2024

i2p before 2.3.0 (Java) allows de-anonymizing the public IPv4 and IPv6 addresses of i2p hidden... Low Unreviewed

CVE-2023-36325 was published Oct 9, 2024

Improper check for unusual or exceptional conditions in Intel(R) TDX Module firmware before... Low Unreviewed

CVE-2024-27457 was published Oct 8, 2024

In JetBrains TeamCity before 2024.07.3 stored XSS was possible via server global settings Low Unreviewed

CVE-2024-47951 was published Oct 8, 2024

In JetBrains TeamCity before 2024.07.3 stored XSS was possible in Backup configuration settings Low Unreviewed

CVE-2024-47950 was published Oct 8, 2024

An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in... Low Unreviewed

CVE-2024-33506 was published Oct 8, 2024

CWE-20: Improper Input Validation vulnerability exists that could cause a crash of the Zelio Soft... Low Unreviewed

CVE-2024-8518 was published Oct 8, 2024

Use of implicit intent for sensitive communication in translation혻in Samsung Internet prior to... Low Unreviewed

CVE-2024-34671 was published Oct 8, 2024

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS by memory leak. Low Unreviewed

CVE-2024-43696 was published Oct 8, 2024

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through out-of-bounds... Low Unreviewed

CVE-2024-45382 was published Oct 8, 2024

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through improper input. Low Unreviewed

CVE-2024-43697 was published Oct 8, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Low Unreviewed

CVE-2024-43687 was published Oct 4, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Low Unreviewed

CVE-2024-43686 was published Oct 4, 2024

A Path Traversal (Local File Inclusion) vulnerability in "BinaryFileRedirector.ashx" in CADClick... Low Unreviewed

CVE-2024-41511 was published Oct 4, 2024

NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in the nvdisasm command line... Low Unreviewed

CVE-2024-0123 was published Oct 3, 2024

Previous 1 2 3 4 5 6 7 … 396 397 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

9,920 advisories