GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
86,754 advisories
Filter by severity
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-36243
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-36260
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-37030
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-37185
was published
Jul 2, 2024
Web services managed by Edito CMS (Content Management System) in versions from 3.5 through 3.25...
High
Unreviewed
CVE-2024-4836
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-37077
was published
Jul 2, 2024
A 'Cross-site Scripting' (XSS) vulnerability, characterized by improper input neutralization...
High
Unreviewed
CVE-2023-41922
was published
Jul 2, 2024
The user management section of the web application permits the creation of user accounts with...
High
Unreviewed
CVE-2023-41923
was published
Jul 2, 2024
The webserver utilizes basic authentication for its user login to the configuration interface. As...
High
Unreviewed
CVE-2023-41926
was published
Jul 2, 2024
Local File Inclusion vulnerability in LA-Studio LA-Studio Element Kit for Elementor via ...
High
Unreviewed
CVE-2024-37479
was published
Jul 2, 2024
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File...
High
Unreviewed
CVE-2024-5349
was published
Jul 2, 2024
Incorrect Default Permissions vulnerability in Hitachi JP1/Extensible SNMP Agent for Windows,...
High
Unreviewed
CVE-2024-4679
was published
Jul 2, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36997
was published
Jul 1, 2024
In Splunk Enterprise on Windows versions below 9.2.2, 9.1.5, and 9.0.10, an attacker could...
High
Unreviewed
CVE-2024-36991
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user...
High
Unreviewed
CVE-2024-36984
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36982
was published
Jul 1, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
High
Unreviewed
CVE-2024-21586
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36983
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10, a low-privileged user that does not...
High
Unreviewed
CVE-2024-36985
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36989
was published
Jul 1, 2024
Memory corruption while handling user packets during VBO bind operation.
High
Unreviewed
CVE-2024-23380
was published
Jul 1, 2024
MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection...
High
Unreviewed
CVE-2024-6376
was published
Jul 1, 2024
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater...
High
Unreviewed
CVE-2024-23372
was published
Jul 1, 2024
Memory corruption when allocating and accessing an entry in an SMEM partition.
High
Unreviewed
CVE-2024-23368
was published
Jul 1, 2024
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
High
Unreviewed
CVE-2024-23373
was published
Jul 1, 2024
ProTip!
Advisories are also available from the
GraphQL API