Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
902
Swift
38
Unreviewed advisories
All unreviewed
5,000+

128 advisories

Loading
On affected platforms running Arista EOS with 802.1X configured, certain conditions may occur... Moderate Unreviewed
CVE-2024-8000 was published Mar 4, 2025
The HTTP server in Mongoose before 7.10 accepts requests containing negative Content-Length headers. High Unreviewed
CVE-2023-34188 was published Jun 23, 2023
NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where... Low Unreviewed
CVE-2024-53878 was published Feb 25, 2025
NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where... Low Unreviewed
CVE-2024-53879 was published Feb 25, 2025
Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds... Moderate Unreviewed
CVE-2023-20508 was published Feb 12, 2025
Improper access control in the DRTM firmware could allow a privileged attacker to perform... Low Unreviewed
CVE-2023-31331 was published Feb 12, 2025
Improper access control in the IOMMU may allow a privileged attacker to bypass RMP checks,... Low Unreviewed
CVE-2023-20581 was published Feb 12, 2025
Improper handling of invalid nested page table entries in the IOMMU may allow a privileged... Moderate Unreviewed
CVE-2023-20582 was published Feb 12, 2025
Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to... Moderate Unreviewed
CVE-2023-20515 was published Feb 12, 2025
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13.7... Low Unreviewed
CVE-2025-24100 was published Jan 28, 2025
CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template... High Unreviewed
CVE-2023-30269 was published Apr 26, 2023
In several functions of PhoneAccountRegistrar.java, there is a possible way to prevent an access... Moderate Unreviewed
CVE-2023-21111 was published May 16, 2023
Multiple validation issues were addressed with improved input sanitization. This issue is fixed... Moderate Unreviewed
CVE-2023-27961 was published May 8, 2023
Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and... Moderate Unreviewed
CVE-2022-26047 was published Nov 11, 2022
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS... Moderate Unreviewed
CVE-2023-27941 was published May 8, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20704 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20708 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20709 was published May 16, 2023
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20707 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20710 was published May 16, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20705 was published May 16, 2023
In m4u, there is a possible out of bounds write due to improper input validation. This could lead... Moderate Unreviewed
CVE-2023-20722 was published May 16, 2023
** DISPUTED ** Varnish 2.0.6 writes data to a log file without sanitizing non-printable... Moderate Unreviewed
CVE-2009-4488 was published May 2, 2022
src/sdp.c in bluez-libs 3.30 in BlueZ, and other bluez-libs before 3.34 and bluez-utils before 3... High Unreviewed
CVE-2008-2374 was published May 1, 2022
An issue was found in Action Launcher v50.5 allows an attacker to escalate privilege via... High Unreviewed
CVE-2022-47029 was published May 30, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database