Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

37 advisories

Loading
Improper validation of syntactic correctness of input in Microsoft Exchange Server allows an... Moderate Unreviewed
CVE-2025-25007 was published Aug 12, 2025
An unauthenticated attacker who can connect to the Web Services feature (HTTP TCP port 80) can... High Unreviewed
CVE-2024-51983 was published Jun 26, 2025
An unauthenticated attacker who can connect to TCP port 9100 can issue a Printer Job Language ... High Unreviewed
CVE-2024-51982 was published Jun 26, 2025
Denial of service due to improper handling of malformed input. The following products are... High Unreviewed
CVE-2025-30415 was published Jun 4, 2025
An Improper Validation of Syntactic Correctness of Input vulnerability in Routing Protocol Daemon... Moderate Unreviewed
CVE-2023-44204 was published Oct 13, 2023
A vulnerability in the “Network Interfaces” functionality of the web application of ctrlX OS... Moderate Unreviewed
CVE-2025-24348 was published Apr 30, 2025
A vulnerability in the “Network Interfaces” functionality of the web application of ctrlX OS... Moderate Unreviewed
CVE-2025-24347 was published Apr 30, 2025
A vulnerability in the “Proxy” functionality of the web application of ctrlX OS allows a remote... High Unreviewed
CVE-2025-24346 was published Apr 30, 2025
A vulnerability in the “Hosts” functionality of the web application of ctrlX OS allows a remote... Moderate Unreviewed
CVE-2025-24345 was published Apr 30, 2025
Westermo WeOS 5 through 5.23.0 allows a reboot via a malformed ESP packet. Moderate Unreviewed
CVE-2025-46419 was published Apr 24, 2025
IBM App Connect Enterprise Certified Container 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11... Moderate Unreviewed
CVE-2024-52362 was published Mar 12, 2025
Improper Validation of Syntactic Correctness of Input vulnerability in Finder Fire Safety Finder... High Unreviewed
CVE-2024-12146 was published Mar 6, 2025
In Modem, there is a possible memory corruption due to incorrect error handling. This could lead... High Unreviewed
CVE-2025-20644 was published Mar 3, 2025
A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0) ... High Unreviewed
CVE-2025-24812 was published Feb 11, 2025
An Improper Validation of Syntactic Correctness of Input vulnerability in the Routing Protocol... High Unreviewed
CVE-2024-21598 was published Apr 12, 2024
The initial code parsing the manifest did not check the content of the file names yet later code... High Unreviewed
CVE-2025-0638 was published Jan 22, 2025
51l3nc3, member of the AXIS OS Bug Bounty Program, has found that a Guard Tour VAPIX API... Moderate Unreviewed
CVE-2024-6173 was published Sep 10, 2024
Erik de Jong, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API ftptest.cgi... Low Unreviewed
CVE-2024-8160 was published Nov 26, 2024
51l3nc3, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API... Moderate Unreviewed
CVE-2024-8772 was published Nov 26, 2024
An authenticated user can provide a malformed ACL to the fileserver's StoreACL RPC, causing the... High Unreviewed
CVE-2024-10396 was published Nov 14, 2024
A user controlled parameter related to SMTP test functionality is not correctly validated making... High Unreviewed
CVE-2021-31987 was published May 24, 2022
A user controlled parameter related to SMTP test functionality is not correctly validated making... High Unreviewed
CVE-2021-31988 was published May 24, 2022
Knud from Fraktal.fi has found a flaw in some Axis Network Door Controllers and Axis Network... Moderate Unreviewed
CVE-2023-21405 was published Jul 25, 2023
** DISPUTED ** An Improper Input Validation vulnerability affecting the FTP service running on... Low Unreviewed
CVE-2023-6950 was published Apr 2, 2024
A Denial of Service (Dos) vulnerability in Nozomi Networks Guardian, caused by improper input... High Unreviewed
CVE-2024-0218 was published Apr 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database