GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,967
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,076
Pub
10
RubyGems
832
Rust
781
Swift
34
Unreviewed advisories
All unreviewed
5,000+
240,627 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix potential...
Unknown
Unreviewed
CVE-2024-26928
was published
Apr 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
PCI/ASPM: Fix deadlock when...
Moderate
Unreviewed
CVE-2024-26605
was published
Feb 26, 2024
In the Linux kernel, the following vulnerability has been resolved:
x86/efistub: Use 1:1 file...
Unknown
Unreviewed
CVE-2024-26678
was published
Apr 2, 2024
Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the input...
High
Unreviewed
CVE-2022-26125
was published
Mar 4, 2022
A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to a wrong check on the...
High
Unreviewed
CVE-2022-26128
was published
Mar 4, 2022
An issue was discovered in bgpd in FRRouting (FRR) 8.3. In bgp_notify_send_with_data() and...
High
Unreviewed
CVE-2022-37035
was published
Aug 3, 2022
An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP...
High
Unreviewed
CVE-2023-47235
was published
Nov 3, 2023
An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when processing a...
High
Unreviewed
CVE-2023-47234
was published
Nov 3, 2023
An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur for a crafted BGP...
High
Unreviewed
CVE-2023-46753
was published
Oct 26, 2023
An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI...
High
Unreviewed
CVE-2023-46752
was published
Oct 26, 2023
bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a ...
Critical
Unreviewed
CVE-2023-38406
was published
Nov 6, 2023
In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a...
Unknown
Unreviewed
CVE-2024-31949
was published
Apr 7, 2024
Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the...
High
Unreviewed
CVE-2022-26129
was published
Mar 4, 2022
A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to missing a check on the...
High
Unreviewed
CVE-2022-26127
was published
Mar 4, 2022
bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream...
High
Unreviewed
CVE-2023-38407
was published
Nov 6, 2023
In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP...
Unknown
Unreviewed
CVE-2024-31948
was published
Apr 7, 2024
HTTP/2 rapid reset can cause excessive work in net/http
High
CVE-2023-39325
was published
for
golang.org/x/net
(Go)
Oct 11, 2023
ReportLab vulnerable to remote code execution via paraparser
Critical
CVE-2019-19450
was published
for
reportlab
(pip)
Sep 20, 2023
NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that...
High
Unreviewed
CVE-2024-1931
was published
Mar 7, 2024
"IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version information...
Moderate
Unreviewed
CVE-2022-38710
was published
Nov 4, 2022
Authorization bypass through user-controlled key vulnerability in MELSEC iQ-R series Safety CPU...
High
Unreviewed
CVE-2021-20599
was published
May 24, 2022
HashiCorp go-getter Vulnerable to Argument Injection When Fetching Remote Default Git Branches
Critical
CVE-2024-3817
was published
for
github.com/hashicorp/go-getter
(Go)
Apr 17, 2024
A vulnerability classified as problematic was found in PHPGurukul Doctor Appointment Management...
Moderate
Unreviewed
CVE-2024-4293
was published
Apr 28, 2024
A vulnerability, which was classified as critical, has been found in PHPGurukul Doctor...
Moderate
Unreviewed
CVE-2024-4294
was published
Apr 28, 2024
An issue was discovered in Logpoint 7.1 before 7.1.2. The daily executed cron file...
High
Unreviewed
CVE-2022-48685
was published
Apr 28, 2024
ProTip!
Advisories are also available from the
GraphQL API