Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

832 advisories

Loading
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a ... High Unreviewed
CVE-2024-45238 was published Aug 25, 2024
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a ... High Unreviewed
CVE-2024-45235 was published Aug 25, 2024
When TCP profile with Multipath TCP enabled (MPTCP) is configured on a Virtual Server,... High Unreviewed
CVE-2024-41164 was published Aug 14, 2024
A NULL pointer dereference in WLAvalancheService in Ivanti Avalanche 6.3.1 allows a remote... High Unreviewed
CVE-2024-37399 was published Aug 14, 2024
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability High Unreviewed
CVE-2024-38146 was published Aug 13, 2024
Windows Network Address Translation (NAT) Denial of Service Vulnerability High Unreviewed
CVE-2024-38126 was published Aug 13, 2024
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability High Unreviewed
CVE-2024-38145 was published Aug 13, 2024
A NULL pointer dereference in vercot Serva v4.6.0 allows attackers to cause a Denial of Service ... High Unreviewed
CVE-2024-37826 was published Aug 12, 2024
Windows Remote Desktop Licensing Service Denial of Service Vulnerability High Unreviewed
CVE-2024-38072 was published Jul 9, 2024
null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker... High Unreviewed
CVE-2024-38477 was published Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions... High Unreviewed
CVE-2024-36982 was published Jul 1, 2024
A NULL Pointer Dereference discovered in DumpTS v0.1.0-nightly allows attackers to cause a denial... High Unreviewed
CVE-2024-39130 was published Jun 27, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix possible... High Unreviewed
CVE-2023-52883 was published Jun 20, 2024
In the Linux kernel, the following vulnerability has been resolved: ALSA: core: Fix NULL module... High Unreviewed
CVE-2024-38605 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: cppc_cpufreq: Fix possible... High Unreviewed
CVE-2024-38573 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: af_unix: Update unix_sk(sk)-... High Unreviewed
CVE-2024-36972 was published Jun 10, 2024
robdns commit d76d2e6 was discovered to contain a NULL pointer dereference via the item->tokens... High Unreviewed
CVE-2024-24194 was published Jun 7, 2024
In the Linux kernel, the following vulnerability has been resolved: riscv, bpf: Fix potential... High Unreviewed
CVE-2021-47486 was published May 22, 2024
In the Linux kernel, the following vulnerability has been resolved: audit: fix possible null... High Unreviewed
CVE-2021-47464 was published May 22, 2024
In the Linux kernel, the following vulnerability has been resolved: hwmon: (w83791d) Fix NULL... High Unreviewed
CVE-2021-47386 was published May 21, 2024
In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null... High Unreviewed
CVE-2023-52696 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ncm: Avoid... High Unreviewed
CVE-2024-27405 was published May 17, 2024
Animate versions 24.0.2, 23.0.5 and earlier are affected by a NULL Pointer Dereference... High Unreviewed
CVE-2024-30295 was published May 16, 2024
Win32k Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30030 was published May 14, 2024
When BIG-IP AFM is licensed and provisioned, undisclosed DNS traffic can cause the Traffic... High Unreviewed
CVE-2024-25560 was published May 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database