Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,426 advisories

Loading
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to denial of... Moderate Unreviewed
CVE-2023-52296 was published Apr 3, 2024
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5, 11.1, and 11.5 federated... Moderate Unreviewed
CVE-2024-27254 was published Apr 3, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to a denial... Moderate Unreviewed
CVE-2024-22360 was published Apr 3, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to... Moderate Unreviewed
CVE-2024-25046 was published Apr 3, 2024
A Improper Input Validation issue affecting the v2_sdk_service running on a set of DJI drone... Moderate Unreviewed
CVE-2023-51456 was published Apr 2, 2024
in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any... Moderate Unreviewed
CVE-2024-29074 was published Apr 2, 2024
IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS and 9.3 CD is vulnerable to a denial-of-service attack... Moderate Unreviewed
CVE-2023-45177 was published Mar 20, 2024
Dell PowerEdge Server BIOS contains an Improper SMM communication buffer verification... Moderate Unreviewed
CVE-2024-25942 was published Mar 19, 2024
Improper input validation in AVSystem Unified Management Platform (UMP) 23.07.0.16567~LTS can... Moderate Unreviewed
CVE-2024-25656 was published Mar 18, 2024
Certain functionality in OpenText Vertica Management console might be prone to bypass via... Moderate Unreviewed
CVE-2023-7248 was published Mar 15, 2024
Improper input validation in the Intel(R) CSME installer software before version 2328.5.5.0 may... Moderate Unreviewed
CVE-2023-32633 was published Mar 14, 2024
Windows Standards-Based Storage Management Service Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-26197 was published Mar 12, 2024
Windows Kernel Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-26181 was published Mar 12, 2024
Microsoft Teams for Android Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-21448 was published Mar 12, 2024
An unauthenticated remote attacker can upload a arbitrary script file due to improper input... Moderate Unreviewed
CVE-2024-25994 was published Mar 12, 2024
An unauthenticated remote attacker can read memory out of bounds due to improper input validation... Moderate Unreviewed
CVE-2024-26000 was published Mar 12, 2024
An unauthenticated remote attacker can perform a log injection due to improper input validation.... Moderate Unreviewed
CVE-2024-25997 was published Mar 12, 2024
Adobe InDesign versions ID18.5 (and earlier) and ID17.4.2 (and earlier) are affected by a... Moderate Unreviewed
CVE-2023-44345 was published Feb 29, 2024
The Frentix GmbH OpenOlat LMS is affected by stored a Cross-Site Scripting (XSS) vulnerability.... Moderate Unreviewed
CVE-2024-25974 was published Feb 20, 2024
wolfSSL prior to 5.6.6 did not check that messages in one (D)TLS record do not span key... Moderate Unreviewed
CVE-2023-6937 was published Feb 15, 2024
Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by an Improper Input... Moderate Unreviewed
CVE-2024-20733 was published Feb 15, 2024
An HTML injection vulnerability exists where an authenticated, remote attacker with... Moderate Unreviewed
CVE-2024-1471 was published Feb 15, 2024
Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and... Moderate Unreviewed
CVE-2024-24696 was published Feb 14, 2024
Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and... Moderate Unreviewed
CVE-2024-24695 was published Feb 14, 2024
Improper input validation in some Zoom clients may allow an authenticated user to conduct a... Moderate Unreviewed
CVE-2024-24690 was published Feb 14, 2024
ProTip! Advisories are also available from the GraphQL API