Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

861 advisories

Loading
QuickJS before c4cdd61 has a build_for_in_iterator NULL pointer dereference because of an... High Unreviewed
CVE-2023-48183 was published Apr 23, 2024
cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the... High Unreviewed
CVE-2024-31755 was published Apr 26, 2024
Softing edgeConnector Siemens OPC UA Server Null Pointer Dereference Denial-of-Service... High Unreviewed
CVE-2023-27336 was published May 3, 2024
When BIG-IP AFM is licensed and provisioned, undisclosed DNS traffic can cause the Traffic... High Unreviewed
CVE-2024-25560 was published May 8, 2024
Win32k Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30030 was published May 14, 2024
Animate versions 24.0.2, 23.0.5 and earlier are affected by a NULL Pointer Dereference... High Unreviewed
CVE-2024-30295 was published May 16, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ncm: Avoid... High Unreviewed
CVE-2024-27405 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null... High Unreviewed
CVE-2023-52696 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: audit: fix possible null... High Unreviewed
CVE-2021-47464 was published May 22, 2024
In the Linux kernel, the following vulnerability has been resolved: riscv, bpf: Fix potential... High Unreviewed
CVE-2021-47486 was published May 22, 2024
robdns commit d76d2e6 was discovered to contain a NULL pointer dereference via the item->tokens... High Unreviewed
CVE-2024-24194 was published Jun 7, 2024
In the Linux kernel, the following vulnerability has been resolved: af_unix: Update unix_sk(sk)-... High Unreviewed
CVE-2024-36972 was published Jun 10, 2024
ws affected by a DoS when handling a request with many HTTP headers High
CVE-2024-37890 was published for ws (npm) Jun 17, 2024
rrlapointe
In the Linux kernel, the following vulnerability has been resolved: cppc_cpufreq: Fix possible... High Unreviewed
CVE-2024-38573 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: ALSA: core: Fix NULL module... High Unreviewed
CVE-2024-38605 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix possible... High Unreviewed
CVE-2023-52883 was published Jun 20, 2024
A NULL Pointer Dereference discovered in DumpTS v0.1.0-nightly allows attackers to cause a denial... High Unreviewed
CVE-2024-39130 was published Jun 27, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions... High Unreviewed
CVE-2024-36982 was published Jul 1, 2024
null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker... High Unreviewed
CVE-2024-38477 was published Jul 1, 2024
Windows Remote Desktop Licensing Service Denial of Service Vulnerability High Unreviewed
CVE-2024-38072 was published Jul 9, 2024
A NULL pointer dereference in vercot Serva v4.6.0 allows attackers to cause a Denial of Service ... High Unreviewed
CVE-2024-37826 was published Aug 12, 2024
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability High Unreviewed
CVE-2024-38146 was published Aug 13, 2024
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability High Unreviewed
CVE-2024-38145 was published Aug 13, 2024
Windows Network Address Translation (NAT) Denial of Service Vulnerability High Unreviewed
CVE-2024-38126 was published Aug 13, 2024
A NULL pointer dereference in WLAvalancheService in Ivanti Avalanche 6.3.1 allows a remote... High Unreviewed
CVE-2024-37399 was published Aug 14, 2024
ProTip! Advisories are also available from the GraphQL API