GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
10,906 advisories
Filter by severity
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An...
Low
Unreviewed
CVE-2024-44180
was published
Sep 17, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An...
Low
Unreviewed
CVE-2024-44139
was published
Sep 17, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2024-40791
was published
Sep 17, 2024
A privacy issue was addressed by moving sensitive data to a protected location. This issue is...
Low
Unreviewed
CVE-2024-40838
was published
Sep 17, 2024
This issue was addressed with improved data protection. This issue is fixed in iOS 18 and iPadOS...
Low
Unreviewed
CVE-2024-40830
was published
Sep 17, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.1.7...
Low
Unreviewed
CVE-2024-6685
was published
Sep 17, 2024
Improper access control in Intel(R) RAID Web Console software all versions may allow an...
Low
Unreviewed
CVE-2024-36261
was published
Sep 16, 2024
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user...
Low
Unreviewed
CVE-2024-28170
was published
Sep 16, 2024
Out-of-bounds read in UEFI firmware for some Intel(R) Processors may allow a privileged user to...
Low
Unreviewed
CVE-2023-25546
was published
Sep 16, 2024
lexical-core has multiple soundness issues
Low
GHSA-2326-pfpj-vx3h
was published
for
lexical-core
(Rust)
Sep 16, 2024
Mattermost Desktop App fails to safeguard screen capture functionality
Low
CVE-2024-39772
was published
for
mattermost-desktop
(npm)
Sep 16, 2024
Mattermost Desktop App fails to sufficiently configure Electron Fuses
Low
CVE-2024-45835
was published
for
mattermost-desktop
(npm)
Sep 16, 2024
In JetBrains IntelliJ IDEA before 2024.1 hTML injection via the project name was possible
Low
Unreviewed
CVE-2024-46970
was published
Sep 16, 2024
A vulnerability classified as critical has been found in TOTOLINK A720R 4.1.5. Affected is the...
Low
Unreviewed
CVE-2024-8869
was published
Sep 16, 2024
The CMP CLI client in KeyFactor EJBCA before 8.3.1 has only 6 octets of salt, and is thus not...
Low
Unreviewed
CVE-2024-36066
was published
Sep 12, 2024
An issue has been discovered in GitLab affecting all versions starting from 17.1 to 17.1.7, 17.2...
Low
Unreviewed
CVE-2024-6446
was published
Sep 12, 2024
Affected versions of Octopus Server had a weak content security policy.
Low
Unreviewed
CVE-2024-1656
was published
Sep 11, 2024
An improperly implemented security check for standard vulnerability [CWE-358] in FortiADC Web...
Low
Unreviewed
CVE-2024-36511
was published
Sep 10, 2024
A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted...
Low
Unreviewed
CVE-2024-8443
was published
Sep 10, 2024
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All...
Low
Unreviewed
CVE-2024-37995
was published
Sep 10, 2024
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory...
Low
Unreviewed
CVE-2024-42425
was published
Sep 10, 2024
Improper Control of Generation of Code ('Code Injection') in Electron Fuses in Logitech Options...
Low
Unreviewed
CVE-2024-8258
was published
Sep 10, 2024
Dell PowerScale InsightIQ, version 5.0, contain a Use of hard coded Credentials vulnerability. A...
Low
Unreviewed
CVE-2024-39582
was published
Sep 10, 2024
An authenticated attacker with high privilege can use functions of SLCM transactions to which...
Low
Unreviewed
CVE-2024-45284
was published
Sep 10, 2024
Due to missing authorization check, SAP NetWeaver Application Server for ABAP and ABAP Platform...
Low
Unreviewed
CVE-2024-41728
was published
Sep 10, 2024
ProTip!
Advisories are also available from the
GraphQL API