Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

861 advisories

Loading
An issue was discovered in OpenNDS Captive Portal before version 10.1.2. It has a... High Unreviewed
CVE-2023-38320 was published Nov 17, 2023
An issue was discovered in OpenNDS Captive Portal before 10.1.2. it has a do_binauth NULL pointer... High Unreviewed
CVE-2023-38313 was published Nov 17, 2023
An issue was discovered in OpenNDS Captive Portal before version 10.1.2. It has a do_binauth NULL... High Unreviewed
CVE-2023-38322 was published Nov 17, 2023
An issue was discovered in OpenNDS Captive Portal before version 10.1.2. It has a... High Unreviewed
CVE-2023-38315 was published Nov 17, 2023
A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35... High Unreviewed
CVE-2023-38524 was published Aug 8, 2023
When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests... High Unreviewed
CVE-2024-24989 was published Feb 14, 2024
MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for... High Unreviewed
CVE-2022-47015 was published Jan 20, 2023
Remote Denial of Service Vulnerability in Microsoft.Native.Quic.MsQuic.Schannel High
CVE-2023-38171 was published for Microsoft.Native.Quic.MsQuic.OpenSSL (NuGet) Oct 10, 2023
Duplicate Advisory: gosaml2 is vulnerable to NULL Pointer Dereference from malformed XML signatures High
GHSA-gq5r-cc4w-g8xf was published for github.com/russellhaering/gosaml2 (Go) Jun 23, 2021 withdrawn
tdunlap607
golang.org/x/net/html NULL Pointer Dereference vulnerability High
CVE-2018-17142 was published for golang.org/x/net (Go) May 13, 2022
golang.org/x/net/html NULL Pointer Dereference vulnerability High
CVE-2018-17075 was published for golang.org/x/net (Go) May 13, 2022
github.com/russellhaering/gosaml2 is vulnerable to NULL Pointer Dereference High
CVE-2020-7731 was published for github.com/russellhaering/gosaml2 (Go) Nov 15, 2022
stevenjohnstone
goxmldsig vulnerable to crash on nil-pointer dereference caused by sending malformed XML signatures High
CVE-2020-7711 was published for github.com/russellhaering/gosaml2 (Go) Oct 7, 2022
Animate versions 24.0.2, 23.0.5 and earlier are affected by a NULL Pointer Dereference... High Unreviewed
CVE-2024-30295 was published May 16, 2024
Win32k Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30030 was published May 14, 2024
Apache HTTP Server protocol handler for the HTTP/2 protocol checks received request headers... High Unreviewed
CVE-2021-31618 was published May 24, 2022
When BIG-IP AFM is licensed and provisioned, undisclosed DNS traffic can cause the Traffic... High Unreviewed
CVE-2024-25560 was published May 8, 2024
Softing edgeConnector Siemens OPC UA Server Null Pointer Dereference Denial-of-Service... High Unreviewed
CVE-2023-27336 was published May 3, 2024
cJSON v1.7.16 was discovered to contain a segmentation violation via the function... High Unreviewed
CVE-2023-50471 was published Dec 14, 2023
.NET Denial of Service Vulnerability High Unreviewed
CVE-2024-21404 was published Feb 13, 2024
Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render. High Unreviewed
CVE-2023-43541 was published Mar 4, 2024
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2024-20661 was published Jan 9, 2024
D-Link DIR-880 A1_FW107WWb08 was discovered to contain a NULL pointer dereference in the function... High Unreviewed
CVE-2023-39669 was published Aug 18, 2023
An issue was discovered in Mooltipass Moolticute through v0.42.1 and v0.42.x-testing through v0... High Unreviewed
CVE-2019-18635 was published May 24, 2022
A vulnerability was found in openldap. This security flaw causes a null pointer dereference in... High Unreviewed
CVE-2023-2953 was published May 31, 2023
ProTip! Advisories are also available from the GraphQL API