Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,168
Erlang
30
GitHub Actions
19
Go
1,975
Maven
5,000+
npm
3,698
NuGet
654
pip
3,314
Pub
11
RubyGems
882
Rust
831
Swift
35
Unreviewed advisories
All unreviewed
5,000+

72 advisories

Loading
Denial of Service in TYPO3 Bookmark Toolbar Low
CVE-2024-34537 was published for typo3/cms-backend (Composer) Oct 8, 2024
ohader bnf
Eichner
Uncaught exception for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software... Moderate Unreviewed
CVE-2023-26586 was published Oct 29, 2024
Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this... High Unreviewed
CVE-2023-46765 was published Nov 8, 2023
SurrealDB has an Uncaught Exception Handling Parsing Errors on Empty Strings High
GHSA-qjrv-v6qp-x99x was published for surrealdb (Rust) Oct 8, 2024
Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola... High Unreviewed
CVE-2023-23774 was published Aug 29, 2023
Malformed Device Reset Locally Command Class packets can be sent to the controller, causing the... Moderate Unreviewed
CVE-2023-6533 was published Feb 21, 2024
Malformed S2 Nonce Get command classes can be sent to crash the gateway. A hard reset is... High Unreviewed
CVE-2024-3052 was published Apr 27, 2024
Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end... High Unreviewed
CVE-2024-3051 was published Apr 27, 2024
Malformed S2 Nonce Get Command Class packets can be sent to crash PC Controller v5.54.0 and... Moderate Unreviewed
CVE-2023-6640 was published Feb 21, 2024
A denial of service vulnerability exists in all Silicon Labs Z-Wave controller and endpoint... Moderate Unreviewed
CVE-2023-5310 was published Dec 15, 2023
json2xml Uncaught Exception vulnerability High
CVE-2022-25024 was published for json2xml (pip) Aug 23, 2023
Keylime: unhandled exceptions could lead to invalid attestation states High
CVE-2022-3500 was published for Keylime (pip) Oct 28, 2022
galmasi
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated... Moderate Unreviewed
CVE-2024-33848 was published Sep 16, 2024
panic on parsing crafted phonenumber inputs High
CVE-2024-39697 was published for phonenumber (Rust) Jul 9, 2024
rubdos
Unchecked parameter value in M-Files Server in versions before 23.6.12695.3 (excluding 23.2 SR2... High Unreviewed
CVE-2023-3405 was published Jun 27, 2023
In modem-ps-nas-ngmm, there is a possible undefined behavior due to incorrect error handling.... Unknown Unreviewed
CVE-2023-52342 was published Apr 8, 2024
Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects High
CVE-2024-43367 was published for boa_engine (Rust) Aug 14, 2024
ctcpip arai-a
jedel1043 jasonwilliams nekevss
Vulnerability of uncaught exceptions in the Graphics module Impact: Successful exploitation of... Critical Unreviewed
CVE-2024-42037 was published Aug 8, 2024
Panic when parsing invalid palette-color images in golang.org/x/image High
CVE-2024-24792 was published for golang.org/x/image (Go) Jun 26, 2024
badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on... High Unreviewed
CVE-2023-5038 was published Jun 25, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could... Moderate Unreviewed
CVE-2024-20048 was published Apr 1, 2024
@strapi/plugin-upload has a Denial-of-Service via Improper Exception Handling Moderate
CVE-2024-31217 was published for @strapi/plugin-upload (npm) Jun 12, 2024
CxDavidepaalte derrickmehaffy
Marc-Roig alexandrebodin
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 integration... Moderate Unreviewed
CVE-2024-31904 was published May 22, 2024
A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to... Moderate Unreviewed
CVE-2024-28835 was published Mar 21, 2024
Denial of service (DoS) vulnerability in the AMS module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-32995 was published May 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database