GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,041
Maven
5,000+
npm
3,733
NuGet
662
pip
3,414
Pub
12
RubyGems
891
Rust
866
Swift
36
Unreviewed advisories
All unreviewed
5,000+
258,988 advisories
Filter by severity
In availableToWriteBytes of MessageQueueBase.h, there is a possible out of bounds write due to an...
High
Unreviewed
CVE-2024-31313
was published
Jul 9, 2024
In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due...
High
Unreviewed
CVE-2024-34725
was published
Jul 9, 2024
In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without...
High
Unreviewed
CVE-2024-31318
was published
Jul 9, 2024
In updateNotificationChannelFromPrivilegedListener of NotificationManagerService.java, there is a...
High
Unreviewed
CVE-2024-31319
was published
Jul 9, 2024
Missing Authentication for Critical Function vulnerability in OpenText™ AccuRev for LDAP...
Critical
Unreviewed
CVE-2019-17082
was published
Nov 26, 2024
In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible...
High
Unreviewed
CVE-2024-34740
was published
Aug 16, 2024
Online Nurse Hiring System v1.0 was discovered to contain a SQL injection vulnerability in the...
High
Unreviewed
CVE-2024-55103
was published
Dec 16, 2024
In smp_proc_sec_req of smp_act.cc, there is a possible out of bounds read due to improper input...
High
Unreviewed
CVE-2024-0045
was published
Mar 11, 2024
In multiple functions of SnoozeHelper.java, there is a possible way to cause a boot loop due to...
Moderate
Unreviewed
CVE-2024-0027
was published
May 7, 2024
IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1
could allow a remote...
Moderate
Unreviewed
CVE-2024-49818
was published
Dec 17, 2024
A vulnerability has been found in the 1000projects Bookstore Management System PHP MySQL Project...
Unknown
Unreviewed
CVE-2024-55496
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-11422
was published
Dec 17, 2024
IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 stores potentially...
Moderate
Unreviewed
CVE-2024-49816
was published
Dec 17, 2024
IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 could allow a remote...
Moderate
Unreviewed
CVE-2024-49819
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a...
High
Unreviewed
CVE-2024-12669
was published
Dec 17, 2024
IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 stores user credentials...
Moderate
Unreviewed
CVE-2024-49817
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory...
High
Unreviewed
CVE-2024-12194
was published
Dec 17, 2024
An improper handling of insufficient permissions or privileges affects HCL BigFix Inventory. An...
Low
Unreviewed
CVE-2024-42194
was published
Dec 17, 2024
Dante 1.4.0 through 1.4.3 (fixed in 1.4.4) has incorrect access control for some sockd.conf...
Unknown
Unreviewed
CVE-2024-54662
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12197
was published
Dec 17, 2024
IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 could allow a remote...
Low
Unreviewed
CVE-2024-49820
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory...
High
Unreviewed
CVE-2024-12178
was published
Dec 17, 2024
A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can be used to cause a...
High
Unreviewed
CVE-2024-12670
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12193
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12200
was published
Dec 17, 2024
ProTip!
Advisories are also available from the
GraphQL API