Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,967
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,076
Pub
10
RubyGems
832
Rust
781
Swift
34
Unreviewed advisories
All unreviewed
5,000+

240,627 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential... Unknown Unreviewed
CVE-2024-26928 was published Apr 28, 2024
In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix deadlock when... Moderate Unreviewed
CVE-2024-26605 was published Feb 26, 2024
In the Linux kernel, the following vulnerability has been resolved: x86/efistub: Use 1:1 file... Unknown Unreviewed
CVE-2024-26678 was published Apr 2, 2024
Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the input... High Unreviewed
CVE-2022-26125 was published Mar 4, 2022
A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to a wrong check on the... High Unreviewed
CVE-2022-26128 was published Mar 4, 2022
An issue was discovered in bgpd in FRRouting (FRR) 8.3. In bgp_notify_send_with_data() and... High Unreviewed
CVE-2022-37035 was published Aug 3, 2022
An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP... High Unreviewed
CVE-2023-47235 was published Nov 3, 2023
An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when processing a... High Unreviewed
CVE-2023-47234 was published Nov 3, 2023
An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur for a crafted BGP... High Unreviewed
CVE-2023-46753 was published Oct 26, 2023
An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI... High Unreviewed
CVE-2023-46752 was published Oct 26, 2023
bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a ... Critical Unreviewed
CVE-2023-38406 was published Nov 6, 2023
In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a... Unknown Unreviewed
CVE-2024-31949 was published Apr 7, 2024
Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the... High Unreviewed
CVE-2022-26129 was published Mar 4, 2022
A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to missing a check on the... High Unreviewed
CVE-2022-26127 was published Mar 4, 2022
bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream... High Unreviewed
CVE-2023-38407 was published Nov 6, 2023
In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP... Unknown Unreviewed
CVE-2024-31948 was published Apr 7, 2024
HTTP/2 rapid reset can cause excessive work in net/http High
CVE-2023-39325 was published for golang.org/x/net (Go) Oct 11, 2023
ReportLab vulnerable to remote code execution via paraparser Critical
CVE-2019-19450 was published for reportlab (pip) Sep 20, 2023
NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that... High Unreviewed
CVE-2024-1931 was published Mar 7, 2024
"IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version information... Moderate Unreviewed
CVE-2022-38710 was published Nov 4, 2022
Authorization bypass through user-controlled key vulnerability in MELSEC iQ-R series Safety CPU... High Unreviewed
CVE-2021-20599 was published May 24, 2022
HashiCorp go-getter Vulnerable to Argument Injection When Fetching Remote Default Git Branches Critical
CVE-2024-3817 was published for github.com/hashicorp/go-getter (Go) Apr 17, 2024
A vulnerability classified as problematic was found in PHPGurukul Doctor Appointment Management... Moderate Unreviewed
CVE-2024-4293 was published Apr 28, 2024
A vulnerability, which was classified as critical, has been found in PHPGurukul Doctor... Moderate Unreviewed
CVE-2024-4294 was published Apr 28, 2024
An issue was discovered in Logpoint 7.1 before 7.1.2. The daily executed cron file... High Unreviewed
CVE-2022-48685 was published Apr 28, 2024
ProTip! Advisories are also available from the GraphQL API