GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
256,181 advisories
Filter by severity
Windows Remote Desktop Services Tampering Vulnerability
Moderate
Unreviewed
CVE-2024-43456
was published
Oct 8, 2024
Missing authentication for critical function in Visual Studio Code extension for Arduino allows...
High
Unreviewed
CVE-2024-43488
was published
Oct 8, 2024
Windows Kerberos Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38129
was published
Oct 8, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38265
was published
Oct 8, 2024
Azure Service Fabric for Linux Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43480
was published
Oct 8, 2024
A flaw was found in Event-Driven Automation (EDA) in Ansible Automation Platform (AAP), which...
Moderate
Unreviewed
CVE-2024-9620
was published
Oct 8, 2024
Path Traversal in Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker...
High
Unreviewed
CVE-2024-47010
was published
Oct 8, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43453
was published
Oct 8, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38212
was published
Oct 8, 2024
Windows Telephony Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43518
was published
Oct 8, 2024
Path Traversal in Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker...
High
Unreviewed
CVE-2024-47011
was published
Oct 8, 2024
Server-side request forgery in Ivanti Avalanche before version 6.4.5 allows a remote...
High
Unreviewed
CVE-2024-47008
was published
Oct 8, 2024
A flaw exists whereby a user can make a specific call to a FlashArray endpoint allowing privilege...
Critical
Unreviewed
CVE-2024-3057
was published
Oct 8, 2024
In JetBrains TeamCity before 2024.07.3 stored XSS was possible in Backup configuration settings
Low
Unreviewed
CVE-2024-47950
was published
Oct 8, 2024
In JetBrains TeamCity before 2024.07.3 password could be exposed via Sonar runner REST API
Moderate
Unreviewed
CVE-2024-47161
was published
Oct 8, 2024
In JetBrains TeamCity before 2024.07.3 stored XSS was possible via server global settings
Low
Unreviewed
CVE-2024-47951
was published
Oct 8, 2024
A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanche before version 6.4.5...
High
Unreviewed
CVE-2024-47007
was published
Oct 8, 2024
Path Traversal in Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker...
High
Unreviewed
CVE-2024-47009
was published
Oct 8, 2024
Path traversal in Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with...
High
Unreviewed
CVE-2024-9381
was published
Oct 8, 2024
Windows Hyper-V Denial of Service Vulnerability
High
Unreviewed
CVE-2024-43567
was published
Oct 8, 2024
Microsoft Management Console Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43572
was published
Oct 8, 2024
Windows Network Address Translation (NAT) Denial of Service Vulnerability
High
Unreviewed
CVE-2024-43562
was published
Oct 8, 2024
Windows Network Address Translation (NAT) Denial of Service Vulnerability
High
Unreviewed
CVE-2024-43565
was published
Oct 8, 2024
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43563
was published
Oct 8, 2024
Sudo for Windows Spoofing Vulnerability
Moderate
Unreviewed
CVE-2024-43571
was published
Oct 8, 2024
ProTip!
Advisories are also available from the
GraphQL API