GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,135
Composer 4,081
Erlang 29
GitHub Actions 19
Go 1,909
Maven 5,106
npm 3,642
NuGet 638
pip 3,258
Pub 10
RubyGems 869
Rust 820
Swift 35

Unreviewed advisories

All unreviewed 228,995

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

10,906 advisories

Filter by severity

Sort by

Least recently updated

The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An... Low Unreviewed

CVE-2024-44180 was published Sep 17, 2024

The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An... Low Unreviewed

CVE-2024-44139 was published Sep 17, 2024

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed

CVE-2024-40791 was published Sep 17, 2024

A privacy issue was addressed by moving sensitive data to a protected location. This issue is... Low Unreviewed

CVE-2024-40838 was published Sep 17, 2024

This issue was addressed with improved data protection. This issue is fixed in iOS 18 and iPadOS... Low Unreviewed

CVE-2024-40830 was published Sep 17, 2024

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.1.7... Low Unreviewed

CVE-2024-6685 was published Sep 17, 2024

Improper access control in Intel(R) RAID Web Console software all versions may allow an... Low Unreviewed

CVE-2024-36261 was published Sep 16, 2024

Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user... Low Unreviewed

CVE-2024-28170 was published Sep 16, 2024

Out-of-bounds read in UEFI firmware for some Intel(R) Processors may allow a privileged user to... Low Unreviewed

CVE-2023-25546 was published Sep 16, 2024

lexical-core has multiple soundness issues Low

GHSA-2326-pfpj-vx3h was published for lexical-core (Rust) Sep 16, 2024

Mattermost Desktop App fails to safeguard screen capture functionality Low

CVE-2024-39772 was published for mattermost-desktop (npm) Sep 16, 2024

Mattermost Desktop App fails to sufficiently configure Electron Fuses Low

CVE-2024-45835 was published for mattermost-desktop (npm) Sep 16, 2024

In JetBrains IntelliJ IDEA before 2024.1 hTML injection via the project name was possible Low Unreviewed

CVE-2024-46970 was published Sep 16, 2024

A vulnerability classified as critical has been found in TOTOLINK A720R 4.1.5. Affected is the... Low Unreviewed

CVE-2024-8869 was published Sep 16, 2024

The CMP CLI client in KeyFactor EJBCA before 8.3.1 has only 6 octets of salt, and is thus not... Low Unreviewed

CVE-2024-36066 was published Sep 12, 2024

An issue has been discovered in GitLab affecting all versions starting from 17.1 to 17.1.7, 17.2... Low Unreviewed

CVE-2024-6446 was published Sep 12, 2024

Affected versions of Octopus Server had a weak content security policy. Low Unreviewed

CVE-2024-1656 was published Sep 11, 2024

An improperly implemented security check for standard vulnerability [CWE-358] in FortiADC Web... Low Unreviewed

CVE-2024-36511 was published Sep 10, 2024

A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted... Low Unreviewed

CVE-2024-8443 was published Sep 10, 2024

A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All... Low Unreviewed

CVE-2024-37995 was published Sep 10, 2024

Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory... Low Unreviewed

CVE-2024-42425 was published Sep 10, 2024

Improper Control of Generation of Code ('Code Injection') in Electron Fuses in Logitech Options... Low Unreviewed

CVE-2024-8258 was published Sep 10, 2024

Dell PowerScale InsightIQ, version 5.0, contain a Use of hard coded Credentials vulnerability. A... Low Unreviewed

CVE-2024-39582 was published Sep 10, 2024

An authenticated attacker with high privilege can use functions of SLCM transactions to which... Low Unreviewed

CVE-2024-45284 was published Sep 10, 2024

Due to missing authorization check, SAP NetWeaver Application Server for ABAP and ABAP Platform... Low Unreviewed

CVE-2024-41728 was published Sep 10, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,906 advisories