Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,803
Erlang
36
GitHub Actions
29
Go
2,387
Maven
5,000+
npm
4,017
NuGet
720
pip
3,811
Pub
12
RubyGems
930
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

49 advisories

Loading
Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway High Unreviewed
CVE-2025-5349 was published Jun 17, 2025
On affected platforms running Arista EOS with Traffic Policies configured the vulnerability will... High Unreviewed
CVE-2024-9448 was published May 8, 2025
Software installed and run as a non-privileged user may conduct improper GPU system calls to... High Unreviewed
CVE-2025-25178 was published Apr 4, 2025
A code execution vulnerability exists in the Xiaomi Game center application product. The... High Unreviewed
CVE-2024-45351 was published Mar 26, 2025
An issue in the 690b33e1-0462-4e84-9bea-c7552b45432a.sys component of Asus GPU Tweak II Program... High Unreviewed
CVE-2024-55410 was published Jan 7, 2025
An issue in the DeviceloControl function of ITE Tech. Inc ITE IO Access v1.0.0.0 allows attackers... High Unreviewed
CVE-2024-55407 was published Jan 6, 2025
In Modem, there is a possible system crash due to improper input validation. This could lead to... High Unreviewed
CVE-2024-20149 was published Jan 6, 2025
In OPPO Store APP, there's a possible escalation of privilege due to improper input validation. High Unreviewed
CVE-2024-1610 was published Dec 18, 2024
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 2100, 1280,... High Unreviewed
CVE-2024-39343 was published Dec 2, 2024
Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet... High Unreviewed
CVE-2024-47257 was published Nov 26, 2024
A memory corruption vulnerability exists in the affected products when parsing DFT files. Local... High Unreviewed
CVE-2024-6068 was published Nov 14, 2024
The ctl_report_supported_opcodes function did not sufficiently validate a field provided by... High Unreviewed
CVE-2024-42416 was published Sep 5, 2024
A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow... High Unreviewed
CVE-2024-5102 was published Jun 10, 2024
In the Linux kernel, the following vulnerability has been resolved: mac80211: fix skb length... High Unreviewed
CVE-2021-47251 was published May 21, 2024
Improper Validation of Specified Quantity in Input vulnerability in Tips and Tricks HQ WP Express... High Unreviewed
CVE-2024-30527 was published May 17, 2024
Faulty input validation in the core of Apache allows malicious or exploitable backend/content... High Unreviewed
CVE-2023-38709 was published Apr 4, 2024
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. High Unreviewed
CVE-2024-1714 was published Feb 21, 2024
Denial-of-service (DoS) vulnerability due to improper validation of specified type of input issue... High Unreviewed
CVE-2023-38744 was published Aug 3, 2023
The HTTP server in Mongoose before 7.10 accepts requests containing negative Content-Length headers. High Unreviewed
CVE-2023-34188 was published Jun 23, 2023
A denial of service attack might be launched against the server if an unusually lengthy password ... High Unreviewed
CVE-2023-30082 was published Jun 14, 2023
Due to URL previews in the network panel of developer tools improperly storing URLs, query... High Unreviewed
CVE-2023-25731 was published Jun 2, 2023
An issue was found in Action Launcher v50.5 allows an attacker to escalate privilege via... High Unreviewed
CVE-2022-47029 was published May 30, 2023
CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template... High Unreviewed
CVE-2023-30269 was published Apr 26, 2023
A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the... High Unreviewed
CVE-2022-4904 was published Mar 7, 2023
The geofencing kernel code has a vulnerability of not verifying the length of the input data.... High Unreviewed
CVE-2022-48297 was published Feb 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database