Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

102,405 advisories

Loading
In Janitza GridVis through 9.0.66, use of hard-coded credentials in the de.janitza.pasw.feature... High Unreviewed
CVE-2023-50894 was published Mar 26, 2024
SourceCodester PHP Task Management System 1.0 is vulnerable to SQL Injection via update-admin.php... High Unreviewed
CVE-2024-29301 was published Mar 26, 2024
Directory Traversal vulnerability in Yealink VP59 v.91.15.0.118 allows a physically proximate... High Unreviewed
CVE-2024-28442 was published Mar 26, 2024
An issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker... High Unreviewed
CVE-2023-40287 was published Mar 27, 2024
An issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker... High Unreviewed
CVE-2023-40284 was published Mar 27, 2024
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel... High Unreviewed
CVE-2024-2937 was published Aug 5, 2024
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel... High Unreviewed
CVE-2024-4607 was published Aug 5, 2024
In AtiHandleAPOMsgType of ati_Main.c, there is a possible OOB write due to a missing null check.... High Unreviewed
CVE-2024-27211 was published Mar 11, 2024
A directory listing vulnerability in School Fees Management System v1.0 allows attackers to list... High Unreviewed
CVE-2023-49981 was published Mar 21, 2024
Duplicate Advisory: Juju leaks of the sensitive context ID High
GHSA-8c64-q78q-87r6 was published for github.com/juju/juju (Go) Jul 29, 2024 withdrawn
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when... High Unreviewed
CVE-2024-33034 was published Aug 5, 2024
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of... High Unreviewed
CVE-2024-33024 was published Aug 5, 2024
Memory corruption while allocating memory in HGSL driver. High Unreviewed
CVE-2024-33022 was published Aug 5, 2024
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is... High Unreviewed
CVE-2024-33028 was published Aug 5, 2024
Memory corruption while processing graphics kernel driver request to create DMA fence. High Unreviewed
CVE-2024-23382 was published Aug 5, 2024
Memory corruption when kernel driver attempts to trigger hardware fences. High Unreviewed
CVE-2024-23383 was published Aug 5, 2024
Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker. High Unreviewed
CVE-2024-23384 was published Aug 5, 2024
Transient DOS while parsing fragments of MBSSID IE from beacon frame. High Unreviewed
CVE-2024-33010 was published Aug 5, 2024
Memory corruption when memory mapped in a VBO is not unmapped by the GPU SMMU. High Unreviewed
CVE-2024-23381 was published Aug 5, 2024
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA. High Unreviewed
CVE-2024-23352 was published Aug 5, 2024
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal... High Unreviewed
CVE-2024-33023 was published Aug 5, 2024
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify... High Unreviewed
CVE-2024-33027 was published Aug 5, 2024
Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed... High Unreviewed
CVE-2024-6472 was published Aug 5, 2024
Missing encryption of sensitive data in Korenix JetPort 5601v3 allows Eavesdropping.This issue... High Unreviewed
CVE-2024-7396 was published Aug 5, 2024
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a... High Unreviewed
CVE-2024-23138 was published Mar 18, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database