GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
318 advisories
Filter by severity
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
Moderate
Unreviewed
CVE-2024-30384
was published
Apr 12, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the the Public Key...
High
Unreviewed
CVE-2024-30397
was published
Apr 12, 2024
Tor path lengths too short when "full Vanguards" configured
Moderate
CVE-2024-35313
was published
for
arti
(Rust)
May 18, 2024
Tor Arti's STUB circuits incorrectly have a length of 2
High
CVE-2024-35312
was published
for
arti
(Rust)
May 18, 2024
Previous ATX is not checked to be the newest valid ATX by Smesher when validating incoming ATX
High
CVE-2024-34360
was published
for
github.com/spacemeshos/api
(Go)
May 10, 2024
Issue summary: Generating excessively long X9.42 DH keys or checking
excessively long X9.42 DH...
High
Unreviewed
CVE-2023-5678
was published
Nov 6, 2023
In the Linux kernel, the following vulnerability has been resolved:
ARM: footbridge: fix PCI...
Moderate
Unreviewed
CVE-2021-46909
was published
Feb 27, 2024
Mattermost crashes web clients via a malformed custom status
Moderate
CVE-2024-4182
was published
for
github.com/mattermost/mattermost-server
(Go)
Apr 26, 2024
The issue was addressed with improved checks. This issue is fixed in Safari 16.6.1, macOS Ventura...
Critical
Unreviewed
CVE-2023-41993
was published
Sep 21, 2023
In the Linux kernel, the following vulnerability has been resolved:
i2c: validate user data in...
Low
Unreviewed
CVE-2021-46934
was published
Feb 27, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in telemetry processing of...
Moderate
Unreviewed
CVE-2024-30409
was published
Apr 12, 2024
An Improper Check for Unusual or Exceptional Conditions in the Packet Forwarding Engine (pfe) of...
Moderate
Unreviewed
CVE-2023-44196
was published
Oct 13, 2023
HPACK decoder panics on invalid input
High
GHSA-w7hm-hmxv-pvhf
was published
for
hpack
(Rust)
Apr 5, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
High
Unreviewed
CVE-2023-44199
was published
Oct 13, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the SIP ALG of Juniper...
High
Unreviewed
CVE-2023-44198
was published
Oct 13, 2023
Parameter verification vulnerability in the window module.Successful exploitation of this...
Moderate
Unreviewed
CVE-2023-41304
was published
Oct 11, 2023
Denial-of-service in NodeBB <= v2.8.10 allows unauthenticated attackers to trigger a crash, when...
High
Unreviewed
CVE-2023-30591
was published
Sep 29, 2023
An improper check for an exceptional condition in the Insider Threat Management (ITM) Server...
Moderate
Unreviewed
CVE-2023-4828
was published
Sep 13, 2023
In OpenBGPD before 8.1, incorrect handling of BGP update data (length of path attributes) set by...
Moderate
Unreviewed
CVE-2023-38283
was published
Aug 29, 2023
In onAccessPointChanged of AccessPointPreference.java, there is a possible way for unprivileged...
Moderate
Unreviewed
CVE-2023-21230
was published
Aug 15, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
High
Unreviewed
CVE-2023-36835
was published
Jul 14, 2023
In ShortcutInfo of ShortcutInfo.java, there is a possible way for an app to retain notification...
Low
Unreviewed
CVE-2023-21246
was published
Jul 13, 2023
In JetBrains IntelliJ IDEA before 2023.1.4 license dialog could be suppressed in certain cases
Low
Unreviewed
CVE-2023-38069
was published
Jul 12, 2023
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could...
Critical
Unreviewed
CVE-2022-45788
was published
Jul 6, 2023
VirtualSquare picoTCP (aka PicoTCP-NG) through 2.1 does not properly check whether header sizes...
High
Unreviewed
CVE-2023-35849
was published
Jun 19, 2023
ProTip!
Advisories are also available from the
GraphQL API