GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
80 advisories
Filter by severity
Null pointer dereference vulnerability in the image decoding module
Impact: Successful...
High
Unreviewed
CVE-2024-54106
was published
Dec 12, 2024
rPGP Panics on Malformed Untrusted Input
High
CVE-2024-53856
was published
for
pgp
(Rust)
Dec 5, 2024
In wlan driver, there is a possible client disconnection due to improper handling of exceptional...
High
Unreviewed
CVE-2024-20137
was published
Dec 2, 2024
SurrealDB has an Uncaught Exception Sorting Tables by Random Order
Moderate
GHSA-m52v-24p8-654f
was published
for
surrealdb
(Rust)
Nov 22, 2024
SurrealDB has an Uncaught Exception Handling Nonexistent Role
Moderate
GHSA-jc55-246c-r88f
was published
for
surrealdb
(Rust)
Nov 22, 2024
SurrealDB has an Uncaught Exception in Function Generating Random Time
Moderate
GHSA-h4f5-h82v-5w4r
was published
for
surrealdb
(Rust)
Nov 22, 2024
Uncaught exception for some Intel(R) CST software before version 8.7.10803 may allow an...
Moderate
Unreviewed
CVE-2024-29076
was published
Nov 13, 2024
Vulnerability of message types not being verified in the advanced messaging modul
Impact:...
Moderate
Unreviewed
CVE-2024-51518
was published
Nov 5, 2024
Uncaught exception for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software...
Moderate
Unreviewed
CVE-2023-26586
was published
Oct 29, 2024
SurrealDB has an Uncaught Exception Handling Parsing Errors on Empty Strings
High
GHSA-qjrv-v6qp-x99x
was published
for
surrealdb
(Rust)
Oct 8, 2024
Denial of Service in TYPO3 Bookmark Toolbar
Low
CVE-2024-34537
was published
for
typo3/cms-backend
(Composer)
Oct 8, 2024
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated...
Moderate
Unreviewed
CVE-2024-33848
was published
Sep 16, 2024
Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects
High
CVE-2024-43367
was published
for
boa_engine
(Rust)
Aug 14, 2024
Vulnerability of uncaught exceptions in the Graphics module
Impact: Successful exploitation of...
Critical
Unreviewed
CVE-2024-42037
was published
Aug 8, 2024
panic on parsing crafted phonenumber inputs
Critical
CVE-2024-39697
was published
for
phonenumber
(Rust)
Jul 9, 2024
Panic when parsing invalid palette-color images in golang.org/x/image
High
CVE-2024-24792
was published
for
golang.org/x/image
(Go)
Jun 26, 2024
badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on...
High
Unreviewed
CVE-2023-5038
was published
Jun 25, 2024
@strapi/plugin-upload has a Denial-of-Service via Improper Exception Handling
Moderate
CVE-2024-31217
was published
for
@strapi/plugin-upload
(npm)
Jun 12, 2024
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 integration...
Moderate
Unreviewed
CVE-2024-31904
was published
May 22, 2024
Denial of service (DoS) vulnerability in the AMS module
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-32995
was published
May 14, 2024
Malformed S2 Nonce Get command classes can be sent to crash the gateway. A hard reset is...
High
Unreviewed
CVE-2024-3052
was published
Apr 27, 2024
Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end...
High
Unreviewed
CVE-2024-3051
was published
Apr 27, 2024
In modem-ps-nas-ngmm, there is a possible undefined behavior due to incorrect error handling....
Unknown
Unreviewed
CVE-2023-52342
was published
Apr 8, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could...
Moderate
Unreviewed
CVE-2024-20048
was published
Apr 1, 2024
Elasticsearch Uncaught Exception leading to crash
Moderate
CVE-2024-23449
was published
for
org.elasticsearch:elasticsearch
(Maven)
Mar 29, 2024
ProTip!
Advisories are also available from the
GraphQL API