GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
832 advisories
Filter by severity
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a ...
High
Unreviewed
CVE-2024-45239
was published
Aug 25, 2024
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a ...
High
Unreviewed
CVE-2024-45235
was published
Aug 25, 2024
When TCP profile with Multipath TCP enabled (MPTCP) is configured on a Virtual Server,...
High
Unreviewed
CVE-2024-41164
was published
Aug 14, 2024
A NULL pointer dereference in WLAvalancheService in Ivanti Avalanche 6.3.1 allows a remote...
High
Unreviewed
CVE-2024-37399
was published
Aug 14, 2024
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38146
was published
Aug 13, 2024
Windows Network Address Translation (NAT) Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38126
was published
Aug 13, 2024
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38145
was published
Aug 13, 2024
A NULL pointer dereference in vercot Serva v4.6.0 allows attackers to cause a Denial of Service ...
High
Unreviewed
CVE-2024-37826
was published
Aug 12, 2024
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38072
was published
Jul 9, 2024
null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker...
High
Unreviewed
CVE-2024-38477
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36982
was published
Jul 1, 2024
A NULL Pointer Dereference discovered in DumpTS v0.1.0-nightly allows attackers to cause a denial...
High
Unreviewed
CVE-2024-39130
was published
Jun 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix possible...
High
Unreviewed
CVE-2023-52883
was published
Jun 20, 2024
In the Linux kernel, the following vulnerability has been resolved:
ALSA: core: Fix NULL module...
High
Unreviewed
CVE-2024-38605
was published
Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
cppc_cpufreq: Fix possible...
High
Unreviewed
CVE-2024-38573
was published
Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
af_unix: Update unix_sk(sk)-...
High
Unreviewed
CVE-2024-36972
was published
Jun 10, 2024
robdns commit d76d2e6 was discovered to contain a NULL pointer dereference via the item->tokens...
High
Unreviewed
CVE-2024-24194
was published
Jun 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
riscv, bpf: Fix potential...
High
Unreviewed
CVE-2021-47486
was published
May 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
audit: fix possible null...
High
Unreviewed
CVE-2021-47464
was published
May 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
hwmon: (w83791d) Fix NULL...
High
Unreviewed
CVE-2021-47386
was published
May 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
powerpc/powernv: Add a null...
High
Unreviewed
CVE-2023-52696
was published
May 17, 2024
In the Linux kernel, the following vulnerability has been resolved:
usb: gadget: ncm: Avoid...
High
Unreviewed
CVE-2024-27405
was published
May 17, 2024
Animate versions 24.0.2, 23.0.5 and earlier are affected by a NULL Pointer Dereference...
High
Unreviewed
CVE-2024-30295
was published
May 16, 2024
Win32k Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-30030
was published
May 14, 2024
When BIG-IP AFM is licensed and provisioned, undisclosed DNS traffic can cause the Traffic...
High
Unreviewed
CVE-2024-25560
was published
May 8, 2024
ProTip!
Advisories are also available from the
GraphQL API