Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

281 advisories

Loading
Windows Kernel-Mode Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38256 was published Sep 10, 2024
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38260 was published Sep 10, 2024
Microsoft AllJoyn API Information Disclosure Vulnerability High Unreviewed
CVE-2024-38257 was published Sep 10, 2024
Windows Authentication Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38254 was published Sep 10, 2024
Windows Networking Information Disclosure Vulnerability High Unreviewed
CVE-2024-43458 was published Sep 10, 2024
MongoDB Server may access non-initialized region of memory leading to unexpected behaviour when... Moderate Unreviewed
CVE-2024-8654 was published Sep 10, 2024
The ctl_write_buffer and ctl_read_buffer functions allocated memory to be returned to userspace,... High Unreviewed
CVE-2024-8178 was published Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable:... High Unreviewed
CVE-2024-44983 was published Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved: gtp: pull network headers in... High Unreviewed
CVE-2024-44999 was published Sep 4, 2024
A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or... Low Unreviewed
CVE-2024-45618 was published Sep 4, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An... Low Unreviewed
CVE-2024-45617 was published Sep 4, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An... Low Unreviewed
CVE-2024-45616 was published Sep 4, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An... Low Unreviewed
CVE-2024-45615 was published Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize... Moderate Unreviewed
CVE-2024-42311 was published Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved: net: nexthop: Initialize all... Moderate Unreviewed
CVE-2024-42283 was published Aug 17, 2024
In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an... Low Unreviewed
CVE-2024-7868 was published Aug 15, 2024
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38122 was published Aug 13, 2024
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38118 was published Aug 13, 2024
ANGLE failed to initialize parameters which lead to reading from uninitialized memory. This could... High Unreviewed
CVE-2024-7526 was published Aug 6, 2024
oFono AT CMGR Command Uninitialized Variable Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2024-7542 was published Aug 6, 2024
oFono AT CMGL Command Uninitialized Variable Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2024-7540 was published Aug 6, 2024
oFono AT CMT Command Uninitialized Variable Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2024-7541 was published Aug 6, 2024
Uninitialized Use in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote... High Unreviewed
CVE-2024-6990 was published Aug 1, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Using... High Unreviewed
CVE-2024-42228 was published Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Avoid uninitialized... High Unreviewed
CVE-2024-42161 was published Jul 30, 2024
ProTip! Advisories are also available from the GraphQL API