GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,921 advisories
Filter by severity
HCL Connections is vulnerable to a broken access control vulnerability that may allow an...
Low
Unreviewed
CVE-2024-42188
was published
Nov 14, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.3 before 17...
Low
Unreviewed
CVE-2024-9633
was published
Nov 14, 2024
Client use of server error message in PostgreSQL allows a server not trusted under current SSL or...
Low
Unreviewed
CVE-2024-10977
was published
Nov 14, 2024
IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. This vulnerability allows a...
Low
Unreviewed
CVE-2024-45099
was published
Nov 14, 2024
Protection mechanism failure in the SPP for some Intel(R) Xeon(R) processor family (E-Core) may...
Low
Unreviewed
CVE-2024-38660
was published
Nov 13, 2024
Out-of-bounds write in some Intel(R) SGX SDK software may allow an authenticated user to...
Low
Unreviewed
CVE-2024-34776
was published
Nov 13, 2024
Improper Input Validation in some Intel(R) VROC software before version 8.6.0.2003 may allow an...
Low
Unreviewed
CVE-2024-32485
was published
Nov 13, 2024
Out-of-bounds read for some OpenCL(TM) software may allow an authenticated user to potentially...
Low
Unreviewed
CVE-2024-32667
was published
Nov 13, 2024
NULL pointer dereference in some Intel(R) VPL software before version 24.1.4 may allow an...
Low
Unreviewed
CVE-2024-28030
was published
Nov 13, 2024
Out-of-bounds read in some Intel(R) VPL software before version 24.1.4 may allow an authenticated...
Low
Unreviewed
CVE-2024-28051
was published
Nov 13, 2024
Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated...
Low
Unreviewed
CVE-2024-21783
was published
Nov 13, 2024
Improper buffer restrictions in some Intel(R) VPL software before version 24.1.4 may allow an...
Low
Unreviewed
CVE-2024-21808
was published
Nov 13, 2024
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability ...
Low
Unreviewed
CVE-2024-35274
was published
Nov 12, 2024
A vulnerability was found in Digistar AG-30 Plus 2.6b. It has been classified as problematic....
Low
Unreviewed
CVE-2024-11126
was published
Nov 12, 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All...
Low
Unreviewed
CVE-2024-50560
was published
Nov 12, 2024
Exposure of sensitive system information to an unauthorized control sphere issue exists in Mesh...
Low
Unreviewed
CVE-2024-47799
was published
Nov 12, 2024
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a...
Low
Unreviewed
CVE-2024-48838
was published
Nov 12, 2024
The Multiple Page Generator Plugin – MPG plugin for WordPress is vulnerable to arbitrary file...
Low
Unreviewed
CVE-2024-10672
was published
Nov 12, 2024
Cash Operations does not perform necessary authorization check for an authenticated user,...
Low
Unreviewed
CVE-2024-47587
was published
Nov 12, 2024
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an...
Low
Unreviewed
CVE-2024-10917
was published
Nov 11, 2024
Sensitive information disclosure during file browsing due to improper soft link handling. The...
Low
Unreviewed
CVE-2024-34015
was published
Nov 11, 2024
Mattermost versions 9.11.x <= 9.11.2, and 9.5.x <= 9.5.10 fail to protect the mfa code against...
Low
Unreviewed
CVE-2024-36250
was published
Nov 9, 2024
Mattermost versions 9.10.x <= 9.10.2, 9.11.x <= 9.11.1, 9.5.x <= 9.5.9 and 10.0.x <= 10.0.0 fail...
Low
Unreviewed
CVE-2024-42000
was published
Nov 9, 2024
Northern.tech Hosted Mender before 2024.07.11 allows SSRF.
Low
Unreviewed
CVE-2024-47190
was published
Nov 8, 2024
Dell PowerProtect DD, versions prior to 7.7.5.50, contains an Exposure of Sensitive Information...
Low
Unreviewed
CVE-2024-48011
was published
Nov 8, 2024
ProTip!
Advisories are also available from the
GraphQL API