Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,250 advisories

Loading
Illustrator versions 28.5, 27.9.4 and earlier are affected by an Improper Input Validation... High Unreviewed
CVE-2024-41856 was published Aug 14, 2024
Improper input validation in kernel mode driver for some Intel(R) Server Board S2600ST Family... High Unreviewed
CVE-2024-28947 was published Aug 14, 2024
Improper input validation in firmware for some Intel(R) NUC may allow a privileged user to... High Unreviewed
CVE-2024-34163 was published Aug 14, 2024
Improper input validation in the Central Filestore in Ivanti Avalanche 6.3.1 allows a remote... High Unreviewed
CVE-2024-37373 was published Aug 14, 2024
Microsoft Project Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38189 was published Aug 13, 2024
Azure Stack Hub Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38201 was published Aug 13, 2024
Windows Common Log File System Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38196 was published Aug 13, 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All... High Unreviewed
CVE-2024-41976 was published Aug 13, 2024
Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533... High Unreviewed
CVE-2024-7005 was published Aug 6, 2024
An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command... High Unreviewed
CVE-2024-23483 was published Aug 6, 2024
The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not... High Unreviewed
CVE-2024-40720 was published Aug 2, 2024
The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not... High Unreviewed
CVE-2024-40721 was published Aug 2, 2024
A vulnerability has been identified in Omnivise T3000 Application Server (All versions). The... High Unreviewed
CVE-2024-38879 was published Aug 2, 2024
A path hijacking vulnerability was reported in Lenovo Driver Manager prior to version 3.1.1307... High Unreviewed
CVE-2023-1577 was published Jul 31, 2024
Improper Input Validation vulnerability in Cato Networks SDP Client on Windows allows OS Command... High Unreviewed
CVE-2024-6973 was published Jul 31, 2024
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39950 was published Jul 31, 2024
A vulnerability has been found in Dahua products.Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39944 was published Jul 31, 2024
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39948 was published Jul 31, 2024
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39949 was published Jul 31, 2024
Invalid Accept-Encoding header can cause Apache Traffic Server to fail cache lookup and force... High Unreviewed
CVE-2024-35296 was published Jul 26, 2024
Apache Traffic Server accepts characters that are not allowed for HTTP field names and forwards... High Unreviewed
CVE-2023-38522 was published Jul 26, 2024
EvilVideo vulnerability allows sending malicious apps disguised as videos in Telegram for Android... High Unreviewed
CVE-2024-7014 was published Jul 23, 2024
Insufficient data validation in Updater in Google Chrome prior to 120.0.6099.62 allowed a remote... High Unreviewed
CVE-2024-3173 was published Jul 17, 2024
An input validation vulnerability exists in the Rockwell Automation 5015 - AENFTXT when a... High Unreviewed
CVE-2024-6089 was published Jul 16, 2024
Improper input validation in the installer for some Zoom Apps for Windows may allow an... High Unreviewed
CVE-2024-27240 was published Jul 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database