Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+

10,384 advisories

A vulnerability in Cisco AppDynamics Network Visibility Agent could allow an unauthenticated,... Moderate Unreviewed
CVE-2024-20394 was published May 15, 2024
File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The... Moderate Unreviewed
CVE-2024-3488 was published May 15, 2024
Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can... High Unreviewed
CVE-2024-3968 was published May 15, 2024
A Header Injection vulnerability in the JFrog platform in versions below 7.85.0 (SaaS) and 7.84.7... Moderate Unreviewed
CVE-2024-2248 was published May 15, 2024
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Input... High Unreviewed
CVE-2024-34098 was published May 15, 2024
Grafana Email addresses and usernames can not be trusted Moderate
CVE-2022-39306 was published for github.com/grafana/grafana (Go) May 14, 2024
Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an... Unknown Unreviewed
CVE-2024-3044 was published May 14, 2024
The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains an Improper Input... High Unreviewed
CVE-2024-3676 was published May 14, 2024
Microsoft Power BI Client JavaScript SDK Information Disclosure Vulnerability Moderate
CVE-2024-30054 was published for Microsoft.PowerBI.JavaScript (NuGet) May 14, 2024
Windows MSHTML Platform Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-30040 was published May 14, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-30002 was published May 14, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-29998 was published May 14, 2024
Improper validation of certain metadata input may result in the server not correctly serialising... High Unreviewed
CVE-2024-3372 was published May 14, 2024
A low privileged remote attacker... Moderate Unreviewed
CVE-2024-28135 was published May 14, 2024
A local attacker with low... High Unreviewed
CVE-2024-28136 was published May 14, 2024
Dell PowerScale OneFS versions 8.2.x through 9.7.0.1 contains an improper input validation... Moderate Unreviewed
CVE-2024-25970 was published May 14, 2024
Apache Karaf Cave: Cave SSRF and arbitrary file access Critical
CVE-2024-34365 was published for org.apache.karaf:cave (Maven) May 14, 2024
Insufficient verification vulnerability in the baseband module Impact: Successful exploitation of... High Unreviewed
CVE-2024-32992 was published May 14, 2024
A Segmentation Fault issue discovered in Samsung Open Source Escargot JavaScript engine ... Moderate Unreviewed
CVE-2024-32672 was published May 14, 2024
Insufficient verification vulnerability in the system sharing pop-up module Impact: Successful... Low Unreviewed
CVE-2024-32989 was published May 14, 2024
Permission verification vulnerability in the system sharing pop-up module Impact: Successful... Moderate Unreviewed
CVE-2024-32990 was published May 14, 2024
This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version ... Unknown Unreviewed
CVE-2024-2257 was published May 14, 2024
When incoming DNS over HTTPS support is enabled using the nghttp2 provider, and queries are... High Unreviewed
CVE-2024-25581 was published May 14, 2024
Local Root Exploit via Configuration Dictionary in dnf5daemon-server before 5.1.17 allows a... High Unreviewed
CVE-2024-1929 was published May 8, 2024
Incomplete fix for CVE-2024-1929 The problem with CVE-2024-1929 was that the dnf5 D-Bus daemon... High Unreviewed
CVE-2024-2746 was published May 8, 2024
ProTip! Advisories are also available from the GraphQL API