Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,996
Maven
5,000+
npm
3,709
NuGet
661
pip
3,348
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

11,098 advisories

Loading
Protection mechanism failure in the SPP for some Intel(R) Xeon(R) processor family (E-Core) may... Low Unreviewed
CVE-2024-38660 was published Nov 13, 2024
Out-of-bounds write in some Intel(R) SGX SDK software may allow an authenticated user to... Low Unreviewed
CVE-2024-34776 was published Nov 13, 2024
Improper Input Validation in some Intel(R) VROC software before version 8.6.0.2003 may allow an... Low Unreviewed
CVE-2024-32485 was published Nov 13, 2024
Out-of-bounds read for some OpenCL(TM) software may allow an authenticated user to potentially... Low Unreviewed
CVE-2024-32667 was published Nov 13, 2024
NULL pointer dereference in some Intel(R) VPL software before version 24.1.4 may allow an... Low Unreviewed
CVE-2024-28030 was published Nov 13, 2024
Out-of-bounds read in some Intel(R) VPL software before version 24.1.4 may allow an authenticated... Low Unreviewed
CVE-2024-28051 was published Nov 13, 2024
Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated... Low Unreviewed
CVE-2024-21783 was published Nov 13, 2024
Improper buffer restrictions in some Intel(R) VPL software before version 24.1.4 may allow an... Low Unreviewed
CVE-2024-21808 was published Nov 13, 2024
.NET Denial of Service Vulnerability Low
CVE-2024-43499 was published for System.Formats.Nrbf (NuGet) Nov 12, 2024
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability ... Low Unreviewed
CVE-2024-35274 was published Nov 12, 2024
paillier-zk has ambiguous challenge derivation Low
GHSA-fpr5-jp2j-4q2f was published for paillier-zk (Rust) Nov 12, 2024
cggmp21 vulnerable to ambiguous challenge derivation Low
GHSA-rm66-9gh4-4gp8 was published for cggmp21 (Rust) Nov 12, 2024
cggmp21-keygen has ambiguous challenge derivation Low
GHSA-7jjx-3qw9-j6h6 was published for cggmp21-keygen (Rust) Nov 12, 2024
`fast-float` has multiple soundness issues Low
GHSA-x8jh-xj3x-gx3c was published for fast-float (Rust) Nov 12, 2024
A vulnerability was found in Digistar AG-30 Plus 2.6b. It has been classified as problematic.... Low Unreviewed
CVE-2024-11126 was published Nov 12, 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All... Low Unreviewed
CVE-2024-50560 was published Nov 12, 2024
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a... Low Unreviewed
CVE-2024-48838 was published Nov 12, 2024
Exposure of sensitive system information to an unauthorized control sphere issue exists in Mesh... Low Unreviewed
CVE-2024-47799 was published Nov 12, 2024
The Multiple Page Generator Plugin – MPG plugin for WordPress is vulnerable to arbitrary file... Low Unreviewed
CVE-2024-10672 was published Nov 12, 2024
Cash Operations does not perform necessary authorization check for an authenticated user,... Low Unreviewed
CVE-2024-47587 was published Nov 12, 2024
Ansible-Core vulnerable to content protections bypass Low
CVE-2024-11079 was published for ansible-core (pip) Nov 12, 2024
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an... Low Unreviewed
CVE-2024-10917 was published Nov 11, 2024
Moodle Cross-site Scripting vulnerability Low
CVE-2024-43437 was published for moodle/moodle (Composer) Nov 11, 2024
Sensitive information disclosure during file browsing due to improper soft link handling. The... Low Unreviewed
CVE-2024-34015 was published Nov 11, 2024
Moodle admin presets export tool includes some secrets that should not be exported Low
CVE-2024-43427 was published for moodle/moodle (Composer) Nov 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database