GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,643
NuGet
638
pip
3,259
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
90,356 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
wifi: rtw89: Fix array index...
High
Unreviewed
CVE-2024-43842
was published
Aug 17, 2024
A broken access control vulnerability in the KillDupUsr_func function of spx_restservice allows...
High
Unreviewed
CVE-2021-44467
was published
Oct 24, 2022
In the Linux kernel, the following vulnerability has been resolved:
iio: Fix the sorting...
High
Unreviewed
CVE-2024-43825
was published
Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved:
Squashfs: sanity check...
High
Unreviewed
CVE-2024-46744
was published
Sep 18, 2024
DroneScout ds230 Remote ID receiver from BlueMark Innovations is affected by an information loss...
High
Unreviewed
CVE-2023-31191
was published
Jul 11, 2023
DroneScout ds230 Remote ID receiver from BlueMark Innovations is affected by an Improper...
High
Unreviewed
CVE-2023-31190
was published
Jul 11, 2023
Certain switch models from PLANET Technology only support obsolete algorithms for authentication...
High
Unreviewed
CVE-2024-8452
was published
Sep 30, 2024
A Local File Inclusion vulnerability exists in parisneo/lollms-webui versions below v9.8. The...
High
Unreviewed
CVE-2024-6394
was published
Sep 30, 2024
Certain switch models from PLANET Technology store SNMPv3 users' passwords in plaintext within...
High
Unreviewed
CVE-2024-8459
was published
Sep 30, 2024
Certain switch models from PLANET Technology have a web application that is vulnerable to Cross...
High
Unreviewed
CVE-2024-8458
was published
Sep 30, 2024
The swctrl service is used to detect and remotely manage PLANET Technology devices. For certain...
High
Unreviewed
CVE-2024-8455
was published
Sep 30, 2024
Certain switch models from PLANET Technology have a Hard-coded community string in the SNMPv1...
High
Unreviewed
CVE-2024-8450
was published
Sep 30, 2024
Certain switch models from PLANET Technology have an SSH service that improperly handles...
High
Unreviewed
CVE-2024-8451
was published
Sep 30, 2024
Certain switch models from PLANET Technology have a hard-coded credential in the specific command...
High
Unreviewed
CVE-2024-8448
was published
Sep 30, 2024
A vulnerability classified as critical has been found in Intelbras InControl up to 2.21.56. This...
High
Unreviewed
CVE-2024-9325
was published
Sep 29, 2024
CheckUser in ScadaServerEngine/MainLogic.cs in Rapid SCADA through 5.8.4 allows an empty password.
High
Unreviewed
CVE-2024-47221
was published
Sep 22, 2024
The ACL (Access Control List) of SAP Message Server - versions KERNEL 7.22, KERNEL 7.53, KERNEL 7...
High
Unreviewed
CVE-2023-37491
was published
Aug 8, 2023
In SAP Commerce Cloud - versions HY_COM 1905, HY_COM 2005, HY_COM2105, HY_COM 2011, HY_COM 2205,...
High
Unreviewed
CVE-2023-42481
was published
Dec 12, 2023
Due to improper validation, SAP BusinessObject Business Intelligence Launch Pad allows an...
High
Unreviewed
CVE-2024-25646
was published
Apr 9, 2024
SAP GUI for Windows and SAP GUI for Java - versions SAP_BASIS 755, SAP_BASIS 756, SAP_BASIS 757,...
High
Unreviewed
CVE-2023-49580
was published
Dec 12, 2023
Under certain conditions SAP Commerce (OCC API) - versions HY_COM 2105, HY_COM 2205, COM_CLOUD...
High
Unreviewed
CVE-2023-37486
was published
Aug 8, 2023
This issue was addressed by enabling hardened runtime. This issue is fixed in Xcode 16. A...
High
Unreviewed
CVE-2024-44162
was published
Sep 17, 2024
SAP NetWeaver Application Server ABAP and ABAP Platform - version KRNL64NUC, 7.22, KRNL64NUC 7...
High
Unreviewed
CVE-2023-35874
was published
Jul 11, 2023
When creating a journal entry template in SAP S/4HANA (Manage Journal Entry Template) - versions...
High
Unreviewed
CVE-2023-35870
was published
Jul 11, 2023
SAP SQL Anywhere - version 17.0, allows an attacker to prevent legitimate users from accessing...
High
Unreviewed
CVE-2023-33990
was published
Jul 11, 2023
ProTip!
Advisories are also available from the
GraphQL API