GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
221,456 advisories
Filter by severity
In JetBrains TeamCity before 2024.03.3 application token could be exposed in EC2 Cloud Profile...
Moderate
Unreviewed
CVE-2024-39879
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user...
High
Unreviewed
CVE-2024-36984
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36982
was published
Jul 1, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
High
Unreviewed
CVE-2024-21586
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
Moderate
Unreviewed
CVE-2024-36987
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36983
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10, a low-privileged user that does not...
High
Unreviewed
CVE-2024-36985
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
Moderate
Unreviewed
CVE-2024-36986
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36989
was published
Jul 1, 2024
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker...
Moderate
Unreviewed
CVE-2024-20399
was published
Jul 1, 2024
Memory corruption while handling user packets during VBO bind operation.
High
Unreviewed
CVE-2024-23380
was published
Jul 1, 2024
A command for refining a collection shard key is missing an authorization check. This may cause...
Moderate
Unreviewed
CVE-2024-6375
was published
Jul 1, 2024
MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection...
High
Unreviewed
CVE-2024-6376
was published
Jul 1, 2024
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater...
High
Unreviewed
CVE-2024-23372
was published
Jul 1, 2024
Memory corruption when allocating and accessing an entry in an SMEM partition.
High
Unreviewed
CVE-2024-23368
was published
Jul 1, 2024
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
High
Unreviewed
CVE-2024-23373
was published
Jul 1, 2024
Memory corruption during the secure boot process, when the `bootm` command is used, it bypasses...
Moderate
Unreviewed
CVE-2024-21482
was published
Jul 1, 2024
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
High
Unreviewed
CVE-2024-21469
was published
Jul 1, 2024
Memory corruption while processing key blob passed by the user.
High
Unreviewed
CVE-2024-21465
was published
Jul 1, 2024
Information disclosure while parsing sub-IE length during new IE generation.
Moderate
Unreviewed
CVE-2024-21466
was published
Jul 1, 2024
Transient DOS while loading the TA ELF file.
High
Unreviewed
CVE-2024-21462
was published
Jul 1, 2024
Information disclosure while handling SA query action frame.
Moderate
Unreviewed
CVE-2024-21458
was published
Jul 1, 2024
Information disclosure when ASLR relocates the IMEM and Secure DDR portions as one chunk in...
High
Unreviewed
CVE-2024-21460
was published
Jul 1, 2024
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
High
Unreviewed
CVE-2024-21461
was published
Jul 1, 2024
Information Disclosure while parsing beacon frame in STA.
Moderate
Unreviewed
CVE-2024-21456
was published
Jul 1, 2024
ProTip!
Advisories are also available from the
GraphQL API