GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
861 advisories
Filter by severity
An issue was discovered in OpenNDS Captive Portal before version 10.1.2. It has a...
High
Unreviewed
CVE-2023-38320
was published
Nov 17, 2023
An issue was discovered in OpenNDS Captive Portal before 10.1.2. it has a do_binauth NULL pointer...
High
Unreviewed
CVE-2023-38313
was published
Nov 17, 2023
An issue was discovered in OpenNDS Captive Portal before version 10.1.2. It has a do_binauth NULL...
High
Unreviewed
CVE-2023-38322
was published
Nov 17, 2023
An issue was discovered in OpenNDS Captive Portal before version 10.1.2. It has a...
High
Unreviewed
CVE-2023-38315
was published
Nov 17, 2023
A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35...
High
Unreviewed
CVE-2023-38524
was published
Aug 8, 2023
When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests...
High
Unreviewed
CVE-2024-24989
was published
Feb 14, 2024
MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for...
High
Unreviewed
CVE-2022-47015
was published
Jan 20, 2023
Remote Denial of Service Vulnerability in Microsoft.Native.Quic.MsQuic.Schannel
High
CVE-2023-38171
was published
for
Microsoft.Native.Quic.MsQuic.OpenSSL
(NuGet)
Oct 10, 2023
Duplicate Advisory: gosaml2 is vulnerable to NULL Pointer Dereference from malformed XML signatures
High
GHSA-gq5r-cc4w-g8xf
was published
for
github.com/russellhaering/gosaml2
(Go)
Jun 23, 2021
•
withdrawn
golang.org/x/net/html NULL Pointer Dereference vulnerability
High
CVE-2018-17142
was published
for
golang.org/x/net
(Go)
May 13, 2022
golang.org/x/net/html NULL Pointer Dereference vulnerability
High
CVE-2018-17075
was published
for
golang.org/x/net
(Go)
May 13, 2022
github.com/russellhaering/gosaml2 is vulnerable to NULL Pointer Dereference
High
CVE-2020-7731
was published
for
github.com/russellhaering/gosaml2
(Go)
Nov 15, 2022
goxmldsig vulnerable to crash on nil-pointer dereference caused by sending malformed XML signatures
High
CVE-2020-7711
was published
for
github.com/russellhaering/gosaml2
(Go)
Oct 7, 2022
Animate versions 24.0.2, 23.0.5 and earlier are affected by a NULL Pointer Dereference...
High
Unreviewed
CVE-2024-30295
was published
May 16, 2024
Win32k Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-30030
was published
May 14, 2024
Apache HTTP Server protocol handler for the HTTP/2 protocol checks received request headers...
High
Unreviewed
CVE-2021-31618
was published
May 24, 2022
When BIG-IP AFM is licensed and provisioned, undisclosed DNS traffic can cause the Traffic...
High
Unreviewed
CVE-2024-25560
was published
May 8, 2024
Softing edgeConnector Siemens OPC UA Server Null Pointer Dereference Denial-of-Service...
High
Unreviewed
CVE-2023-27336
was published
May 3, 2024
cJSON v1.7.16 was discovered to contain a segmentation violation via the function...
High
Unreviewed
CVE-2023-50471
was published
Dec 14, 2023
Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render.
High
Unreviewed
CVE-2023-43541
was published
Mar 4, 2024
Microsoft Message Queuing Denial of Service Vulnerability
High
Unreviewed
CVE-2024-20661
was published
Jan 9, 2024
D-Link DIR-880 A1_FW107WWb08 was discovered to contain a NULL pointer dereference in the function...
High
Unreviewed
CVE-2023-39669
was published
Aug 18, 2023
An issue was discovered in Mooltipass Moolticute through v0.42.1 and v0.42.x-testing through v0...
High
Unreviewed
CVE-2019-18635
was published
May 24, 2022
A vulnerability was found in openldap. This security flaw causes a null pointer dereference in...
High
Unreviewed
CVE-2023-2953
was published
May 31, 2023
ProTip!
Advisories are also available from the
GraphQL API