Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

45 advisories

Loading
NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling... Moderate Unreviewed
CVE-2024-8508 was published Oct 3, 2024
IBM InfoSphere Information Server 11.7 could allow an authenticated user to GUI to not load or... Moderate Unreviewed
CVE-2024-52901 was published Dec 12, 2024
Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote... Moderate Unreviewed
CVE-2024-9369 was published Nov 27, 2024
Missing validation in shape inference for `Dequantize` Moderate
CVE-2021-37677 was published for tensorflow (pip) Aug 25, 2021
Incomplete validation in `MaxPoolGrad` Moderate
CVE-2021-37674 was published for tensorflow (pip) Aug 25, 2021
An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows... Moderate Unreviewed
CVE-2024-48290 was published Nov 7, 2024
Abort caused by allocating a vector that is too large in Tensorflow Moderate
CVE-2022-23580 was published for tensorflow (pip) Feb 7, 2022
In SecurityCommand message after as security has been actived., there is a possible improper... Moderate Unreviewed
CVE-2023-52343 was published Apr 8, 2024
Improper input validation in Power Management Firmware (PMFW) may allow an attacker with... Moderate Unreviewed
CVE-2023-31310 was published Aug 13, 2024
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site... Moderate Unreviewed
CVE-2022-31629 was published Sep 29, 2022
Transaction validity oversight in pallet-ethereum Moderate
CVE-2021-39193 was published for pallet-ethereum (Rust) Sep 1, 2021
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC... Moderate Unreviewed
CVE-2024-7316 was published Oct 18, 2024
Improper input validation in some Zoom clients may allow an authenticated user to conduct a... Moderate Unreviewed
CVE-2024-24690 was published Feb 14, 2024
Django Denial of service vulnerability in django.utils.encoding.uri_to_iri Moderate
CVE-2023-41164 was published for django (pip) Nov 3, 2023
The Eaton Foreseer software provides multiple customizable input fields for the users to... Moderate Unreviewed
CVE-2024-31416 was published Sep 13, 2024
A vulnerability classified as problematic was found in SourceCodester Food Ordering Management... Moderate Unreviewed
CVE-2024-8558 was published Sep 7, 2024
NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a... Moderate Unreviewed
CVE-2024-0111 was published Aug 31, 2024
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows... Moderate Unreviewed
CVE-2024-6768 was published Aug 12, 2024
Django vulnerable to denial-of-service attack Moderate
CVE-2024-41991 was published for Django (pip) Aug 7, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where... Moderate Unreviewed
CVE-2024-31957 was published Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 850, Exynos 1080, Exynos 2100,... Moderate Unreviewed
CVE-2024-27360 was published Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330... Moderate Unreviewed
CVE-2024-27362 was published Jul 9, 2024
Improper Validation of Specified Quantity in Input vulnerability in The Events Calendar BookIt... Moderate Unreviewed
CVE-2024-24715 was published May 17, 2024
An improper access control was identified in the Identity Security Cloud (ISC) message server API... Moderate Unreviewed
CVE-2024-3317 was published May 15, 2024
A key used in logging.json does not follow the least privilege principle by default and is... Moderate Unreviewed
CVE-2024-3185 was published Apr 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database