GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
839 advisories
Filter by severity
On Unix platforms, the Go runtime does not behave differently when a binary is run with the...
High
Unreviewed
CVE-2023-29403
was published
Jun 8, 2023
Use of Hardware Page Aggregation (HPA) and Stage-1 and/or Stage-2 translation on A77, A78, A78C,...
Critical
Unreviewed
CVE-2024-5660
was published
Dec 10, 2024
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain...
High
Unreviewed
CVE-2024-43704
was published
Nov 18, 2024
Remote Desktop Licensing Diagnoser Information Disclosure Vulnerability.
Moderate
Unreviewed
CVE-2022-21964
was published
Jan 12, 2022
Windows GDI+ Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-21880.
Moderate
Unreviewed
CVE-2022-21915
was published
Jan 12, 2022
Windows GDI Information Disclosure Vulnerability.
High
Unreviewed
CVE-2022-21904
was published
Jan 12, 2022
Windows GDI+ Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-21915.
High
Unreviewed
CVE-2022-21880
was published
Jan 12, 2022
Exposure of resource to wrong sphere in some Intel(R) processors with Intel(R) ACTM may allow a...
High
Unreviewed
CVE-2024-24985
was published
Nov 13, 2024
Missing Password Field Masking vulnerability in Mitsubishi Electric Corporation EtherNet/IP...
Moderate
Unreviewed
CVE-2023-2062
was published
Jun 2, 2023
Inappropriate implementation in Paint in Google Chrome prior to 98.0.4758.80 allowed a remote...
Moderate
Unreviewed
CVE-2022-4025
was published
Jan 3, 2023
An improper access control vulnerability exists in GitLab Remote Development affecting all...
Moderate
Unreviewed
CVE-2023-6955
was published
Jan 12, 2024
An issue has been discovered in GitLab DAST scanner affecting all versions starting from 3.0.29...
Moderate
Unreviewed
CVE-2023-1401
was published
Jul 26, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 15.7 before 15.10...
Moderate
Unreviewed
CVE-2023-1825
was published
Jun 7, 2023
Exposure of sensitive information in Zoom Client SDK's before 5.15.5 may allow an authenticated...
High
Unreviewed
CVE-2023-39214
was published
Aug 9, 2023
Insecure temporary file in the installer for Zoom Rooms before version 5.15.0 may allow an...
High
Unreviewed
CVE-2023-34119
was published
Jul 11, 2023
A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download...
High
Unreviewed
CVE-2021-20124
was published
May 24, 2022
A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download...
High
Unreviewed
CVE-2021-20123
was published
May 24, 2022
Error in parser function in M-Files Server versions before 22.6.11534.1 and before 22.6.11505.0...
Moderate
Unreviewed
CVE-2022-1911
was published
Nov 30, 2022
A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of...
Moderate
Unreviewed
CVE-2024-40725
was published
Jul 18, 2024
IBM Maximo Asset Management 7.6.1.3 and IBM Maximo Application Suite 8.10 and 8.11 allows web...
Moderate
Unreviewed
CVE-2024-22333
was published
Jun 13, 2024
The --mirror documentation for Git through 2.35.1 does not mention the availability of deleted...
High
Unreviewed
CVE-2022-24975
was published
Feb 12, 2022
An Exposure of Resource to Wrong Sphere vulnerability in the sampling service of Juniper Networks...
Moderate
Unreviewed
CVE-2024-39553
was published
Jul 11, 2024
Windows MSHTML Platform Spoofing Vulnerability
High
Unreviewed
CVE-2024-38112
was published
Jul 9, 2024
Exposure of resource to wrong sphere in some Intel(R) DTT software installers may allow an...
High
Unreviewed
CVE-2024-21813
was published
May 16, 2024
Microsoft Word Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2023-36761
was published
Sep 12, 2023
ProTip!
Advisories are also available from the
GraphQL API