Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,996
Maven
5,000+
npm
3,709
NuGet
661
pip
3,348
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

99,845 advisories

Loading
Litestar allows unbounded resource consumption (DoS vulnerability) High
CVE-2024-52581 was published for litestar (pip) Nov 20, 2024
defnull
In query of DownloadManager.java, there is a possible read/write of arbitrary files due to a... High Unreviewed
CVE-2018-9468 was published Nov 20, 2024
In bff_Scanner_addOutPos of Scanner.c, there is a possible out-of-bounds write due to an... High Unreviewed
CVE-2018-9470 was published Nov 20, 2024
In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer... High Unreviewed
CVE-2018-9472 was published Nov 20, 2024
In HeadsetInterface::ClccResponse of btif_hf.cc, there is a possible out of bounds stack write... High Unreviewed
CVE-2018-9475 was published Nov 20, 2024
In the development options section of the Settings app, there is a possible authentication bypass... High Unreviewed
CVE-2018-9477 was published Nov 20, 2024
In l2cu_send_peer_config_rej of l2c_utils.cc, there is a possible out of bounds read due to a... High Unreviewed
CVE-2018-9484 was published Nov 20, 2024
In writeToParcel of MediaPlayer.java, there is a possible serialization/deserialization mismatch... High Unreviewed
CVE-2018-9474 was published Nov 20, 2024
D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution (RCE)... High Unreviewed
CVE-2024-52739 was published Nov 20, 2024
In HWCSession::SetColorModeById of hwc_session.cpp, there is a possible out of bounds write due... High Unreviewed
CVE-2018-9409 was published Nov 19, 2024
Transient DOS while parsing probe response and assoc response frame when received frame length is... High Unreviewed
CVE-2024-33026 was published Aug 5, 2024
In multiple functions of ShortcutService.java, there is a possible creation of a spoofed shortcut... High Unreviewed
CVE-2018-9469 was published Nov 20, 2024
In the Mediatek Preloader, there are out of bounds reads and writes due to an exposed interface... High Unreviewed
CVE-2018-9371 was published Nov 19, 2024
A vulnerability was discovered in the firmware builds after 8.0.2.3267 and prior to 8.1.3.1301 in... High Unreviewed
CVE-2024-3281 was published Apr 9, 2024
Improper access control vulnerability in Apaczka plugin for PrestaShop allows information... High Unreviewed
CVE-2024-2759 was published Apr 4, 2024
Transient DOS while processing TID-to-link mapping IE elements. High Unreviewed
CVE-2024-33020 was published Aug 5, 2024
Transient DOS while parsing ESP IE from beacon/probe response frame. High Unreviewed
CVE-2024-33014 was published Aug 5, 2024
Transient DOS while parsing the received TID-to-link mapping action frame. High Unreviewed
CVE-2024-33019 was published Aug 5, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip... High Unreviewed
CVE-2024-46812 was published Sep 27, 2024
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. High Unreviewed
CVE-2024-33025 was published Aug 5, 2024
Memory corruption while processing IOCTL call to set metainfo. High Unreviewed
CVE-2024-33021 was published Aug 5, 2024
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the... High Unreviewed
CVE-2024-33015 was published Aug 5, 2024
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping... High Unreviewed
CVE-2024-33018 was published Aug 5, 2024
Git credentials are exposed in Atlantis logs High
CVE-2024-52009 was published for github.com/runatlantis/atlantis (Go) Nov 8, 2024
niooss-ledger
CometBFT Vote Extensions: Panic when receiving a Pre-commit with an invalid data High
GHSA-p7mv-53f2-4cwj was published for github.com/cometbft/cometbft (Go) Nov 6, 2024
corverroos
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database