GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
86,754 advisories
Filter by severity
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')...
High
Unreviewed
CVE-2024-24890
was published
Mar 25, 2024
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'),...
High
Unreviewed
CVE-2024-24892
was published
Mar 25, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
High
Unreviewed
CVE-2024-24897
was published
Mar 25, 2024
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')...
High
Unreviewed
CVE-2024-24899
was published
Mar 25, 2024
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in openEuler iSulad on Linux...
High
Unreviewed
CVE-2021-33632
was published
Mar 25, 2024
Memory corruption due to buffer copy without checking the size of input while loading firmware in...
High
Unreviewed
CVE-2022-40540
was published
Mar 10, 2023
afu_mmio_region_get_by_offset in drivers/fpga/dfl-afu-region.c in the Linux kernel through 6.1.12...
High
Unreviewed
CVE-2023-26242
was published
Feb 21, 2023
In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there...
High
Unreviewed
CVE-2023-23559
was published
Jan 13, 2023
In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege...
High
Unreviewed
CVE-2021-32606
was published
May 24, 2022
In the Linux kernel 6.0.8, there is a use-after-free in inode_cgwb_move_to_attached in fs/fs...
High
Unreviewed
CVE-2023-26605
was published
Feb 27, 2023
kernel/bpf/verifier.c in the Linux kernel through 5.12.7 enforces incorrect limits for pointer...
High
Unreviewed
CVE-2021-33200
was published
May 24, 2022
A vulnerability was found in Tenda AC15 15.03.20_multi. It has been declared as critical. This...
High
Unreviewed
CVE-2024-2852
was published
Mar 24, 2024
A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.05.19/15.03.20....
High
Unreviewed
CVE-2024-2855
was published
Mar 24, 2024
The snd_usb_create_streams function in sound/usb/card.c in the Linux kernel before 4.13.6 allows...
High
Unreviewed
CVE-2017-16529
was published
May 14, 2022
sound/core/seq_device.c in the Linux kernel before 4.13.4 allows local users to cause a denial of...
High
Unreviewed
CVE-2017-16528
was published
May 14, 2022
The get_endpoints function in drivers/usb/misc/usbtest.c in the Linux kernel through 4.13.11...
High
Unreviewed
CVE-2017-16532
was published
May 14, 2022
An injection issue was addressed with improved input validation. This issue is fixed in macOS...
High
Unreviewed
CVE-2024-23268
was published
Mar 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix a race condition...
High
Unreviewed
CVE-2023-52446
was published
Feb 22, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.7...
High
Unreviewed
CVE-2024-23270
was published
Mar 8, 2024
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS...
High
Unreviewed
CVE-2024-23276
was published
Mar 8, 2024
The event analysis component in Zoho ManageEngine ADAudit Plus 7.1.1 allows an attacker to bypass...
High
Unreviewed
CVE-2023-32783
was published
Aug 7, 2023
Race condition in fs/timerfd.c in the Linux kernel before 4.10.15 allows local users to gain...
High
Unreviewed
CVE-2017-10661
was published
May 14, 2022
sound/usb/mixer.c in the Linux kernel before 4.13.8 allows local users to cause a denial of...
High
Unreviewed
CVE-2017-16527
was published
May 14, 2022
A vulnerability was found in Tenda AC15 15.03.05.18 and classified as critical. Affected by this...
High
Unreviewed
CVE-2024-2850
was published
Mar 24, 2024
Missing Authorization vulnerability in Metagauss EventPrime.This issue affects EventPrime: from n...
High
Unreviewed
CVE-2024-24832
was published
Mar 23, 2024
ProTip!
Advisories are also available from the
GraphQL API