Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

103,281 advisories

Loading
An issue in kmqtt v0.2.7 allows attackers to cause a Denial of Service (DoS) via a crafted request. High Unreviewed
CVE-2024-50947 was published Dec 4, 2024
A vulnerability was found in Netgear R6900 1.0.1.26_1.0.20. It has been declared as critical.... High Unreviewed
CVE-2024-12147 was published Dec 4, 2024
In procfile_write of drivers/misc/mediatek/connectivity/wlan/gen2/os/linux/gl_proc.c, there is a... High Unreviewed
CVE-2018-9393 was published Dec 4, 2024
In mtk_cfg80211_vendor_packet_keep_alive_start and mtk_cfg80211_vendor_set_config of drivers/misc... High Unreviewed
CVE-2018-9395 was published Dec 4, 2024
In get_binary of vendor/mediatek/proprietary/hardware/connectivity/gps/gps_hal/src/data_coder.c,... High Unreviewed
CVE-2018-9392 was published Dec 4, 2024
The GriceMobile com.grice.call application 4.5.2 for Android enables any installed application ... High Unreviewed
CVE-2024-37574 was published Dec 4, 2024
Incorrect permission assignment in temporary access requests component in Devolutions Remote... High Unreviewed
CVE-2024-12149 was published Dec 4, 2024
In mtk_p2p_wext_set_key of drivers/misc/mediatek/connectivity/wlan/gen2/os/linux/gl_p2p.c, there... High Unreviewed
CVE-2018-9394 was published Dec 4, 2024
The Mister org.mistergroup.shouldianswer application 1.4.264 for Android enables any installed... High Unreviewed
CVE-2024-37575 was published Dec 4, 2024
The Accessibility by AllAccessible plugin for WordPress is vulnerable to unauthorized... High Unreviewed
CVE-2024-11643 was published Dec 4, 2024
While parsing certain malformed PLY files, PCL version 1.14.1 crashes due to an uncaught std:... High Unreviewed
CVE-2024-53432 was published Dec 4, 2024
In the Linux kernel, the following vulnerability has been resolved: sctp: fix possible UAF in... High Unreviewed
CVE-2024-53139 was published Dec 4, 2024
In the Linux kernel, the following vulnerability has been resolved: vdpa: solidrun: Fix UB bug... High Unreviewed
CVE-2024-53126 was published Dec 4, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Handle dml... High Unreviewed
CVE-2024-53133 was published Dec 4, 2024
IBM App Connect Enterprise Certified Container 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, and 12.3 could... High Unreviewed
CVE-2024-51465 was published Dec 4, 2024
** INITIAL LIMITED RELEASE ** User Interface (UI) Misrepresentation of Critical Information... High Unreviewed
CVE-2024-52276 was published Dec 4, 2024
** INITIAL LIMITED RELEASE ** User Interface (UI) Misrepresentation of Critical Information... High Unreviewed
CVE-2024-52269 was published Dec 4, 2024
Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 ... High Unreviewed
CVE-2024-52274 was published Dec 4, 2024
Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 ... High Unreviewed
CVE-2024-52273 was published Dec 4, 2024
Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 ... High Unreviewed
CVE-2024-52272 was published Dec 4, 2024
Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 ... High Unreviewed
CVE-2024-52275 was published Dec 4, 2024
In JetBrains YouTrack before 2024.3.51866 system takeover was possible through path traversal in... High Unreviewed
CVE-2024-54154 was published Dec 4, 2024
Double-Free Vulnerability in uD3TN BPv7 Caused by Malformed Endpoint Identifier allows remote... High Unreviewed
CVE-2024-12107 was published Dec 4, 2024
Out-of-bounds Write vulnerability was discovered in Open Design Alliance Drawings SDK before 2025... High Unreviewed
CVE-2024-8894 was published Dec 4, 2024
The Classic Addons – WPBakery Page Builder plugin for WordPress is vulnerable to Limited Local... High Unreviewed
CVE-2024-11952 was published Dec 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database