Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

9,782 advisories

Loading
Some Huawei wearables have a vulnerability of not verifying the actual data size when reading... Unknown Unreviewed
CVE-2021-22484 was published Dec 28, 2024
The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent... Critical Unreviewed
CVE-2017-8923 was published May 14, 2022
Insufficient data validation in Permission Prompts in Google Chrome prior to 117.0.5938.62... High Unreviewed
CVE-2023-7012 was published Jul 17, 2024
IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a... Moderate Unreviewed
CVE-2024-47102 was published Dec 25, 2024
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed
CVE-2024-41887 was published Dec 24, 2024
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed
CVE-2024-41886 was published Dec 24, 2024
There is an insufficient input verification vulnerability in Huawei product. Successful... High Unreviewed
CVE-2022-32144 was published Dec 20, 2024
Path Traversal and Insecure Direct Object Reference (IDOR) vulnerabilities in the eSignaViewer... Low Unreviewed
CVE-2024-12014 was published Dec 20, 2024
The (1) get_user and (2) put_user API functions in the Linux kernel before 3.5.5 on the v6k and... High Unreviewed
CVE-2013-6282 was published May 17, 2022
There is an improper input verification vulnerability in Huawei printer product. Successful... High Unreviewed
CVE-2022-32204 was published Dec 20, 2024
Huawei printers have an input verification vulnerability. Successful exploitation of this... High Unreviewed
CVE-2022-34159 was published Dec 20, 2024
The Authenticode Signature Verification function in Microsoft Windows XP SP2 and SP3, Windows... High Unreviewed
CVE-2012-0151 was published May 4, 2022
Windows Shell in Microsoft Windows XP SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 SP2... High Unreviewed
CVE-2010-2568 was published May 14, 2022
A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients... High Unreviewed
CVE-2020-3390 was published May 24, 2022
Insufficient data validation in Browser Switcher in Google Chrome prior to 124.0.6367.60 allowed... High Unreviewed
CVE-2024-3841 was published Apr 17, 2024
A vulnerability in the multicast DNS (mDNS) feature of Cisco IOS XE Software for Cisco Catalyst... High Unreviewed
CVE-2020-3359 was published May 24, 2022
In onResume of AppManagementFragment.java, there is a possible way to prevent users from... High Unreviewed
CVE-2023-21121 was published Jun 15, 2023
In multiple functions of multiple files, there is a possible way to make the device unusable due... Moderate Unreviewed
CVE-2023-21143 was published Jun 15, 2023
In multiple functions of JobStore.java, there is a possible way to cause a crash on startup due... Moderate Unreviewed
CVE-2023-21136 was published Jun 15, 2023
In onCreate of NotificationAccessSettings.java, there is a possible failure to persist... High Unreviewed
CVE-2023-21135 was published Jun 15, 2023
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. High Unreviewed
CVE-2024-1714 was published Feb 21, 2024
A log spoofing flaw was found in the Tuned package due to improper sanitization of some API... Moderate Unreviewed
CVE-2024-52337 was published Nov 26, 2024
In onNullBinding of CallRedirectionProcessor.java, there is a possible long lived connection due... High Unreviewed
CVE-2023-21138 was published Jun 15, 2023
In smp_proc_sec_req of smp_act.cc, there is a possible out of bounds read due to improper input... High Unreviewed
CVE-2024-0045 was published Mar 11, 2024
Due to the flaws in the verification of input parameters, the attacker can input carefully... High Unreviewed
CVE-2020-12487 was published Dec 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database