GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,076
Erlang
29
GitHub Actions
19
Go
1,895
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
862
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,647 advisories
Filter by severity
A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it...
Moderate
Unreviewed
CVE-2020-0618
was published
May 24, 2022
In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible memory corruption due to improper...
High
Unreviewed
CVE-2024-44094
was published
Sep 13, 2024
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify...
Critical
Unreviewed
CVE-2024-8889
was published
Sep 18, 2024
Karmasis informatics solutions Infraskope Security Event Manager product has an unauthenticated...
High
Unreviewed
CVE-2022-24037
was published
Nov 18, 2022
An Improper Input Validation vulnerability in the Product Update feature of Bitdefender Endpoint...
Moderate
Unreviewed
CVE-2021-3485
was published
May 24, 2022
Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged...
High
Unreviewed
CVE-2024-21781
was published
Sep 16, 2024
Improper input validation in UEFI firmware error handler for some Intel(R) Processors may allow a...
High
Unreviewed
CVE-2024-21829
was published
Sep 16, 2024
Improper input validation in some Intel(R) RAID Web Console software all versions may allow an...
Moderate
Unreviewed
CVE-2024-34545
was published
Sep 16, 2024
Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged...
High
Unreviewed
CVE-2024-21871
was published
Sep 16, 2024
Due to an improper input validation, an unauthenticated threat actor can send a malicious message...
High
Unreviewed
CVE-2024-5990
was published
Jun 25, 2024
Due to an improper input validation, an unauthenticated threat actor can send a malicious message...
Critical
Unreviewed
CVE-2024-5989
was published
Jun 25, 2024
Due to an improper input validation, an unauthenticated threat actor can send a malicious message...
Critical
Unreviewed
CVE-2024-5988
was published
Jun 25, 2024
Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow...
Critical
Unreviewed
CVE-2022-47966
was published
Jan 18, 2023
Atlassian has been made aware of an issue reported by a handful of customers where external...
Critical
Unreviewed
CVE-2023-22515
was published
Oct 4, 2023
A validation issue was addressed with improved logic. This issue is fixed in watchOS 9.6.2, iOS...
High
Unreviewed
CVE-2023-41061
was published
Sep 7, 2023
Illustrator versions 28.5, 27.9.4 and earlier are affected by an Improper Input Validation...
High
Unreviewed
CVE-2024-41856
was published
Aug 14, 2024
A denial-of-service vulnerability exists in the Rockwell Automation affected products when...
High
Unreviewed
CVE-2024-6077
was published
Sep 12, 2024
Improper Input Validation vulnerability in Hillstone Networks Hillstone Networks Web Application...
Critical
Unreviewed
CVE-2024-8073
was published
Aug 26, 2024
Improper Input Validation vulnerability in OpenText NetIQ Access Manager leads to Cross-Site...
High
Unreviewed
CVE-2024-4554
was published
Aug 28, 2024
CVE-2024-45825 IMPACT
A denial-of-service vulnerability exists in the affected products. The...
High
Unreviewed
CVE-2024-45825
was published
Sep 12, 2024
Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS...
High
Unreviewed
CVE-2024-6658
was published
Sep 12, 2024
A Cross-Site Scripting vulnerable identified in NetIQ Advance Authentication that impacts the...
Moderate
Unreviewed
CVE-2021-38122
was published
Aug 28, 2024
A vulnerability in the segment routing feature for the Intermediate System-to-Intermediate System...
High
Unreviewed
CVE-2024-20406
was published
Sep 11, 2024
Microsoft SQL Server Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-37965
was published
Sep 10, 2024
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38244
was published
Sep 10, 2024
ProTip!
Advisories are also available from the
GraphQL API