Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

66 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Invalidate FPU... High Unreviewed
CVE-2021-47226 was published May 21, 2024
On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2),... High Unreviewed
CVE-2017-6168 was published May 13, 2022
The MediaError message property should be consistent to avoid leaking information about cross... High Unreviewed
CVE-2022-34477 was published Dec 22, 2022
A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping... High Unreviewed
CVE-2023-3640 was published Jul 24, 2023
String::Compare::ConstantTime for Perl through 0.321 is vulnerable to timing attacks that allow... High Unreviewed
CVE-2024-13939 was published Mar 28, 2025
The web mail service in Woppoware PostMaster 4.2.2 (build 3.2.5) generates different error... High Unreviewed
CVE-2005-1650 was published May 1, 2022
An access control issue in the component /juis_boxinfo.xml of AVM FRITZ!Box 7530 AX v7.59 allows... High Unreviewed
CVE-2024-54767 was published Jan 7, 2025
Theoretically, it would be possible for an attacker to brute-force the password for an instance... High Unreviewed
CVE-2024-0436 was published Feb 26, 2024
In multiple functions of ConnectivityService.java, there is a possible way for a Wi-Fi AP to... High Unreviewed
CVE-2024-49734 was published Jan 22, 2025
A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS.... High Unreviewed
CVE-2023-0361 was published Feb 15, 2023
An unauthenticated remote attacker can gain access to sensitive information including... High Unreviewed
CVE-2025-1468 was published Mar 18, 2025
Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860... High Unreviewed
CVE-2024-41335 was published Feb 27, 2025
SENAYAN Library Management System (SLiMS) Bulian v9.5.2 does not strip exif data from uploaded... High Unreviewed
CVE-2023-29850 was published Apr 14, 2023
The sensitive information exposure vulnerability in the CGI “Export_Log” and the binary “zcmd” in... High Unreviewed
CVE-2023-28770 was published Jul 6, 2023
Windows MSHTML Platform Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-30040 was published May 14, 2024
IBM Spectrum Virtualize 8.5, under certain circumstances, could disclose sensitive credential... High Unreviewed
CVE-2023-27870 was published May 11, 2023
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... High Unreviewed
CVE-2025-21510 was published Jan 21, 2025
In multiple locations, there is a possible way to obtain any system permission due to a logic... High Unreviewed
CVE-2024-43095 was published Jan 22, 2025
The multimedia video module has a vulnerability in data processing.Successful exploitation of... High Unreviewed
CVE-2023-1696 was published May 20, 2023
Macrovideo v380pro v1.4.97 shares the device id and password when sharing the device. High Unreviewed
CVE-2023-33741 was published May 31, 2023
Windows DNS Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26221 was published Apr 9, 2024
Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to... High Unreviewed
CVE-2023-1707 was published Jun 13, 2023
An issue was discovered in Ujcms v6.0.2 allows attackers to gain sensitive information via the... High Unreviewed
CVE-2023-34878 was published Jun 14, 2023
In the LG LAF component, there is a special command that allowed modification of certain... High Unreviewed
CVE-2018-9364 was published Nov 19, 2024
Observable discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may... High Unreviewed
CVE-2024-28885 was published Nov 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database