GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,055
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,605
NuGet
638
pip
3,208
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+
196 advisories
Filter by severity
An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. The zmmailboxdmgr binary, a...
High
Unreviewed
CVE-2024-27442
was published
Aug 12, 2024
NVIDIA Jetson Linux contains a vulnerability in NvGPU where error handling paths in GPU MMU...
High
Unreviewed
CVE-2024-0108
was published
Aug 8, 2024
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (RPD)...
High
Unreviewed
CVE-2024-39552
was published
Jul 11, 2024
An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd)...
High
Unreviewed
CVE-2024-39541
was published
Jul 11, 2024
An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (RPD)...
High
Unreviewed
CVE-2024-39555
was published
Jul 11, 2024
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd)...
High
Unreviewed
CVE-2024-39560
was published
Jul 11, 2024
Apache Tomcat - Denial of Service
High
CVE-2024-34750
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
Jul 3, 2024
@hono/node-server has Denial of Service risk when receiving Host header that cannot be parsed
High
CVE-2024-32652
was published
for
@hono/node-server
(npm)
Apr 19, 2024
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd)...
High
Unreviewed
CVE-2024-30382
was published
Apr 12, 2024
Traefik vulnerable to denial of service with Content-length header
High
CVE-2024-28869
was published
for
github.com/traefik/traefik
(Go)
Apr 12, 2024
there is a possible way to bypass due to a logic error in the code. This could lead to local...
High
Unreviewed
CVE-2024-29748
was published
Apr 5, 2024
An improper error handling vulnerability in LabVIEW may result in remote code execution. ...
High
Unreviewed
CVE-2024-23609
was published
Mar 11, 2024
An improper error handling vulnerability in LabVIEW may result in remote code execution. ...
High
Unreviewed
CVE-2024-23612
was published
Mar 11, 2024
Dell Power Manager, versions prior to 3.14, contain an Improper Authorization vulnerability in...
High
Unreviewed
CVE-2023-25543
was published
Feb 6, 2024
Quarkus Improper Handling of Insufficient Permissions or Privileges and Improper Handling of Exceptional Conditions vulnerability
High
CVE-2023-6267
was published
for
io.quarkus.resteasy.reactive:resteasy-reactive
(Maven)
Jan 25, 2024
An assertion failure discovered in in check_certificate_request() in Contiki-NG tinyDTLS through...
High
Unreviewed
CVE-2021-42145
was published
Jan 24, 2024
An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers allow...
High
Unreviewed
CVE-2021-42146
was published
Jan 24, 2024
AVEVA PI Server versions 2023 and 2018 SP3 P05 and prior contain a vulnerability that could...
High
Unreviewed
CVE-2023-34348
was published
Jan 18, 2024
Duplicate Advisory: Improper Handling of Exceptional Conditions in Newtonsoft.Json
High
GHSA-8rfx-6mr3-5jh3
was published
for
Newtonsoft.Json
(NuGet)
Jan 3, 2024
•
withdrawn
TypedArrays can be fallible and lacked proper exception handling. This could lead to abuse in...
High
Unreviewed
CVE-2023-6866
was published
Dec 19, 2023
Unauthenticated Denial of Service in the octokit/webhooks library
High
CVE-2023-50728
was published
for
@octokit/app
(npm)
Dec 16, 2023
An uncaught exception issue discovered in Softing OPC UA C++ SDK before 6.30 for Windows...
High
Unreviewed
CVE-2023-41151
was published
Dec 14, 2023
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially...
High
Unreviewed
CVE-2023-22292
was published
Nov 14, 2023
Calico Typha denial of service vulnerability
High
CVE-2023-41378
was published
for
github.com/projectcalico/calico
(Go)
Nov 6, 2023
Directus crashes on invalid WebSocket message
High
CVE-2023-45820
was published
for
directus
(npm)
Oct 19, 2023
ProTip!
Advisories are also available from the
GraphQL API