GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
75 advisories
Filter by severity
In OPPO Store APP, there's a possible escalation of privilege due to improper input validation.
High
Unreviewed
CVE-2024-1610
was published
Dec 18, 2024
IBM InfoSphere Information Server 11.7 could allow an authenticated user to GUI to not load or...
Moderate
Unreviewed
CVE-2024-52901
was published
Dec 12, 2024
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 2100, 1280,...
High
Unreviewed
CVE-2024-39343
was published
Dec 2, 2024
Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote...
Moderate
Unreviewed
CVE-2024-9369
was published
Nov 27, 2024
Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet...
High
Unreviewed
CVE-2024-47257
was published
Nov 26, 2024
A memory corruption vulnerability exists in the affected products when parsing DFT files. Local...
High
Unreviewed
CVE-2024-6068
was published
Nov 14, 2024
An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows...
Moderate
Unreviewed
CVE-2024-48290
was published
Nov 7, 2024
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC...
Moderate
Unreviewed
CVE-2024-7316
was published
Oct 18, 2024
NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling...
Moderate
Unreviewed
CVE-2024-8508
was published
Oct 3, 2024
CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS)...
Critical
Unreviewed
CVE-2024-8887
was published
Sep 18, 2024
The Eaton Foreseer software provides multiple customizable input fields for the users to...
Moderate
Unreviewed
CVE-2024-31416
was published
Sep 13, 2024
A vulnerability classified as problematic was found in SourceCodester Food Ordering Management...
Moderate
Unreviewed
CVE-2024-8558
was published
Sep 7, 2024
The ctl_report_supported_opcodes function did not sufficiently validate a field provided by...
High
Unreviewed
CVE-2024-42416
was published
Sep 5, 2024
NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a...
Moderate
Unreviewed
CVE-2024-0111
was published
Aug 31, 2024
Improper input validation in Power Management Firmware (PMFW) may allow an attacker with...
Moderate
Unreviewed
CVE-2023-31310
was published
Aug 13, 2024
Improper input validation in SMU may allow an attacker with privileges and a compromised physical...
Low
Unreviewed
CVE-2023-31304
was published
Aug 13, 2024
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows...
Moderate
Unreviewed
CVE-2024-6768
was published
Aug 12, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where...
Moderate
Unreviewed
CVE-2024-31957
was published
Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330...
Moderate
Unreviewed
CVE-2024-27362
was published
Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 850, Exynos 1080, Exynos 2100,...
Moderate
Unreviewed
CVE-2024-27360
was published
Jul 9, 2024
A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow...
High
Unreviewed
CVE-2024-5102
was published
Jun 10, 2024
Improper Validation of Specified Quantity in Input vulnerability in The Events Calendar BookIt...
Moderate
Unreviewed
CVE-2024-24715
was published
May 17, 2024
Improper Validation of Specified Quantity in Input vulnerability in Tips and Tricks HQ WP Express...
High
Unreviewed
CVE-2024-30527
was published
May 17, 2024
An improper access control was identified in the Identity Security Cloud (ISC) message server API...
Moderate
Unreviewed
CVE-2024-3317
was published
May 15, 2024
A key used in logging.json does not follow the least privilege principle by default and is...
Moderate
Unreviewed
CVE-2024-3185
was published
Apr 23, 2024
ProTip!
Advisories are also available from the
GraphQL API