GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 19,388
Composer 3,968
Erlang 29
GitHub Actions 16
Go 1,752
Maven 4,982
npm 3,516
NuGet 609
pip 3,090
Pub 10
RubyGems 832
Rust 782
Swift 34

Unreviewed advisories

All unreviewed 221,456

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

86,754 advisories

Filter by severity

Sort by

Least recently updated

in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre... High Unreviewed

CVE-2024-36243 was published Jul 2, 2024

in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre... High Unreviewed

CVE-2024-36260 was published Jul 2, 2024

in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre... High Unreviewed

CVE-2024-37030 was published Jul 2, 2024

in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre... High Unreviewed

CVE-2024-37185 was published Jul 2, 2024

Web services managed by Edito CMS (Content Management System) in versions from 3.5 through 3.25... High Unreviewed

CVE-2024-4836 was published Jul 2, 2024

in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre... High Unreviewed

CVE-2024-37077 was published Jul 2, 2024

A 'Cross-site Scripting' (XSS) vulnerability, characterized by improper input neutralization... High Unreviewed

CVE-2023-41922 was published Jul 2, 2024

The user management section of the web application permits the creation of user accounts with... High Unreviewed

CVE-2023-41923 was published Jul 2, 2024

The webserver utilizes basic authentication for its user login to the configuration interface. As... High Unreviewed

CVE-2023-41926 was published Jul 2, 2024

Local File Inclusion vulnerability in LA-Studio LA-Studio Element Kit for Elementor via ... High Unreviewed

CVE-2024-37479 was published Jul 2, 2024

The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File... High Unreviewed

CVE-2024-5349 was published Jul 2, 2024

Incorrect Default Permissions vulnerability in Hitachi JP1/Extensible SNMP Agent for Windows,... High Unreviewed

CVE-2024-4679 was published Jul 2, 2024

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions... High Unreviewed

CVE-2024-36997 was published Jul 1, 2024

In Splunk Enterprise on Windows versions below 9.2.2, 9.1.5, and 9.0.10, an attacker could... High Unreviewed

CVE-2024-36991 was published Jul 1, 2024

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user... High Unreviewed

CVE-2024-36984 was published Jul 1, 2024

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions... High Unreviewed

CVE-2024-36982 was published Jul 1, 2024

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... High Unreviewed

CVE-2024-21586 was published Jul 1, 2024

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions... High Unreviewed

CVE-2024-36983 was published Jul 1, 2024

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10, a low-privileged user that does not... High Unreviewed

CVE-2024-36985 was published Jul 1, 2024

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions... High Unreviewed

CVE-2024-36989 was published Jul 1, 2024

Memory corruption while handling user packets during VBO bind operation. High Unreviewed

CVE-2024-23380 was published Jul 1, 2024

MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection... High Unreviewed

CVE-2024-6376 was published Jul 1, 2024

Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater... High Unreviewed

CVE-2024-23372 was published Jul 1, 2024

Memory corruption when allocating and accessing an entry in an SMEM partition. High Unreviewed

CVE-2024-23368 was published Jul 1, 2024

Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. High Unreviewed

CVE-2024-23373 was published Jul 1, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

86,754 advisories