Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,340
Erlang
31
GitHub Actions
22
Go
2,101
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
885
Swift
37
Unreviewed advisories
All unreviewed
5,000+

102,864 advisories

Loading
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in... High Unreviewed
CVE-2024-42944 was published Aug 15, 2024
A heap-based buffer overflow vulnerability exists in the FOXMAN-UN/UNEM that if exploited will... High Unreviewed
CVE-2024-2011 was published Jun 11, 2024
TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a hardcoded password... High Unreviewed
CVE-2024-34211 was published May 14, 2024
TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a stack buffer overflow... High Unreviewed
CVE-2024-34207 was published May 14, 2024
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in... High Unreviewed
CVE-2024-42952 was published Aug 15, 2024
In tmu_reset_tmu_trip_counter of TBD, there is a possible out of bounds write due to a missing... High Unreviewed
CVE-2024-25993 was published Mar 11, 2024
In tmu_set_pi of tmu.c, there is a possible out of bounds write due to a missing bounds check.... High Unreviewed
CVE-2024-27219 was published Mar 11, 2024
Directory Traversal vulnerability in Terrasoft, Creatio Terrasoft CRM v.7.18.4.1532 allows a... High Unreviewed
CVE-2024-25461 was published Feb 21, 2024
AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to... High Unreviewed
CVE-2024-6456 was published Aug 15, 2024
VMware Workstation and Fusion contain an information disclosure vulnerability in the Host Guest... High Unreviewed
CVE-2024-22270 was published May 14, 2024
setuid() does not affect libuv's internal io_uring operations if initialized before the call to... High Unreviewed
CVE-2024-22017 was published Mar 19, 2024
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability High Unreviewed
CVE-2024-38211 was published Aug 13, 2024
In multiple functions of MtpFfsHandle.cpp , there is a possible out of bounds write due to a use... High Unreviewed
CVE-2023-40114 was published Feb 16, 2024
Authlib has algorithm confusion with asymmetric public keys High
CVE-2024-37568 was published for authlib (pip) Jun 9, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS... High Unreviewed
CVE-2024-7831 was published Aug 15, 2024
In Unify CP IP Phone firmware 1.10.4.3, Weak Credentials are used (a hardcoded root password). High Unreviewed
CVE-2024-28066 was published Apr 8, 2024
In pl330_dma_from_peri_start() of fp_spi_dma.c, there is a possible out of bounds write due to a... High Unreviewed
CVE-2024-32917 was published Jun 13, 2024
In the Linux kernel through 6.7.2, an untrusted hypervisor can inject virtual interrupts 0 and 14... High Unreviewed
CVE-2024-25743 was published May 15, 2024
A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16... High Unreviewed
CVE-2024-40812 was published Jul 30, 2024
An issue in the component segwindrvx64.sys of Insyde Software Corp SEG Windows Driver v100.00.07... High Unreviewed
CVE-2024-33228 was published May 22, 2024
An issue in Quanxun Huiju Network Technology(Beijing) Co.,Ltd IK-Q3000 3.7.10 x64... High Unreviewed
CVE-2024-34948 was published May 20, 2024
This issue was addressed through improved state management. This issue is fixed in iOS 17.6 and... High Unreviewed
CVE-2024-40786 was published Jul 30, 2024
A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16... High Unreviewed
CVE-2024-40809 was published Jul 30, 2024
A race condition was addressed with additional validation. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2024-40815 was published Jul 30, 2024
An issue in Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 allows attackers to create passwords... High Unreviewed
CVE-2024-36789 was published Jun 7, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database