GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
104,536 advisories
Filter by severity
The configuration file stores credentials in cleartext. An attacker with local access rights can...
Moderate
Unreviewed
CVE-2024-6785
was published
Sep 21, 2024
The vulnerability allows an attacker to craft MQTT messages that include relative path traversal...
Moderate
Unreviewed
CVE-2024-6786
was published
Sep 21, 2024
This vulnerability occurs when an attacker exploits a race condition between the time a file is...
Moderate
Unreviewed
CVE-2024-6787
was published
Sep 21, 2024
A vulnerability, which was classified as problematic, has been found in spa-cartcms 1.9.0.6. This...
Moderate
Unreviewed
CVE-2024-6128
was published
Jun 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-31175
was published
Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-31185
was published
Sep 18, 2024
A cleartext storage of sensitive information in memory vulnerability [CWE-316] affecting...
Moderate
Unreviewed
CVE-2024-35282
was published
Sep 10, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Ensure...
Moderate
Unreviewed
CVE-2024-46726
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
nvmet-tcp: fix kernel crash...
Moderate
Unreviewed
CVE-2024-46737
was published
Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-23916
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
uio_hv_generic: Fix kernel...
Moderate
Unreviewed
CVE-2024-46739
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: btnxpuart: Fix...
Moderate
Unreviewed
CVE-2024-46749
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
smb/server: fix potential...
Moderate
Unreviewed
CVE-2024-46742
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
ublk_drv: fix NULL pointer...
Moderate
Unreviewed
CVE-2024-46735
was published
Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-23915
was published
Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-31165
was published
Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-31167
was published
Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-31164
was published
Sep 18, 2024
IBM QRadar Suite Products 1.10.12.0 through 1.10.18.0 and IBM Cloud Pak for Security 1.10.0.0...
Moderate
Unreviewed
CVE-2023-47742
was published
Mar 3, 2024
A stored cross-site scripting (XSS) vulnerability in the Add Scheduled Task module of Maccms10...
Moderate
Unreviewed
CVE-2024-46654
was published
Sep 20, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-31196
was published
Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-31182
was published
Sep 18, 2024
Cross Site Scripting vulnerability in Leotheme Leo Product Search Module v.2.1.6 and earlier...
Moderate
Unreviewed
CVE-2024-42697
was published
Sep 20, 2024
The Versa Director offers REST APIs for orchestration and management. By design, certain APIs,...
Moderate
Unreviewed
CVE-2024-45229
was published
Sep 20, 2024
IBM CP4BA - Filenet Content Manager Component 5.5.8.0, 5.5.10.0, and 5.5.11.0 could allow a user...
Moderate
Unreviewed
CVE-2023-47716
was published
Mar 1, 2024
ProTip!
Advisories are also available from the
GraphQL API