Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,044
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

35 advisories

Loading
An improper parsing vulnerability was reported in the FileZ client that could allow a crafted... High Unreviewed
CVE-2024-8058 was published Dec 16, 2024
Mattermost Improper Validation of Specified Type of Input vulnerability Moderate
CVE-2024-54083 was published for github.com/mattermost/mattermost/server/v8 (Go) Dec 16, 2024
Credentials Disclosure vulnerabilities allow access to on board project back-up bundles. ... High Unreviewed
CVE-2024-51546 was published Dec 5, 2024
Data Validation / Data Sanitization vulnerabilities in Linux allows unvalidated and unsanitized... Critical Unreviewed
CVE-2024-51550 was published Dec 5, 2024
Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly... Critical Unreviewed
CVE-2024-51551 was published Dec 5, 2024
Moxa’s IP Cameras are affected by a medium-severity vulnerability, CVE-2024-9404, which could... Moderate Unreviewed
CVE-2024-9404 was published Dec 4, 2024
Improper Validation of Specified Type of Input vulnerability in Mitsubishi Electric Corporation... High Unreviewed
CVE-2024-8403 was published Nov 19, 2024
The Waybox Enel X web management application contains a PHP-type juggling vulnerability that may... Moderate Unreviewed
CVE-2023-29126 was published Nov 5, 2024
Improper validation of specified type of input for some Intel(R) PROSet/Wireless and Intel(R)... Moderate Unreviewed
CVE-2023-32651 was published Oct 29, 2024
A vulnerability in the TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA)... High Unreviewed
CVE-2024-20494 was published Oct 23, 2024
A vulnerability in the Dynamic Access Policies (DAP) feature of Cisco Adaptive Security Appliance... High Unreviewed
CVE-2024-20408 was published Oct 23, 2024
An Improper Validation of Specified Type of Input vulnerability in the packet forwarding engine ... High Unreviewed
CVE-2024-47504 was published Oct 11, 2024
The MiCard PLUS Ci and MiCard PLUS BLE reader products developed by rf IDEAS and rebranded by NT... Moderate Unreviewed
CVE-2024-1578 was published Sep 16, 2024
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.62 allowed a... Moderate Unreviewed
CVE-2024-3175 was published Jul 17, 2024
ServiceNow has addressed an input validation vulnerability that was identified in Vancouver and... Critical Unreviewed
CVE-2024-4879 was published Jul 10, 2024
Improper Input Validation vulnerability in ABB ASPECT-Enterprise on Linux, ABB NEXUS Series on... Critical Unreviewed
CVE-2024-6298 was published Jul 5, 2024
IBM QRadar Suite Software 1.10.12.0 through 1.10.21.0 and IBM Cloud Pak for Security 1.10.12.0... High Unreviewed
CVE-2023-47726 was published Jun 18, 2024
IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0... Moderate Unreviewed
CVE-2023-47727 was published May 2, 2024
An Improper Validation of Specified Type of Input vulnerability in Routing Protocol Daemon (RPD)... High Unreviewed
CVE-2024-30395 was published Apr 12, 2024
In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP... Moderate Unreviewed
CVE-2024-31948 was published Apr 7, 2024
In Splunk Enterprise versions below 9.2.1, 9.1.4, and 9.0.9, the Dashboard Examples Hub in the... High Unreviewed
CVE-2024-29946 was published Mar 27, 2024
An issue has been discovered in GitLab EE affecting all versions starting before 16.4.4, all... Moderate Unreviewed
CVE-2023-3904 was published Dec 15, 2023
Denial of Service in pipelines affecting all versions of Gitlab EE and CE prior to 16.2.8, 16.3... High Unreviewed
CVE-2023-3917 was published Sep 29, 2023
An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior... Low Unreviewed
CVE-2023-3906 was published Sep 29, 2023
An issue has been discovered in GitLab affecting all versions starting from 16.2.0. Committing... Moderate Unreviewed
CVE-2023-4522 was published Aug 30, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database