GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
73 advisories
Filter by severity
Vulnerability of message types not being verified in the advanced messaging modul
Impact:...
Moderate
Unreviewed
CVE-2024-51518
was published
Nov 5, 2024
Uncaught exception for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software...
Moderate
Unreviewed
CVE-2023-26586
was published
Oct 29, 2024
SurrealDB has an Uncaught Exception Handling Parsing Errors on Empty Strings
High
GHSA-qjrv-v6qp-x99x
was published
for
surrealdb
(Rust)
Oct 8, 2024
Denial of Service in TYPO3 Bookmark Toolbar
Low
CVE-2024-34537
was published
for
typo3/cms-backend
(Composer)
Oct 8, 2024
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated...
Moderate
Unreviewed
CVE-2024-33848
was published
Sep 16, 2024
Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects
High
CVE-2024-43367
was published
for
boa_engine
(Rust)
Aug 14, 2024
Vulnerability of uncaught exceptions in the Graphics module
Impact: Successful exploitation of...
Critical
Unreviewed
CVE-2024-42037
was published
Aug 8, 2024
panic on parsing crafted phonenumber inputs
High
CVE-2024-39697
was published
for
phonenumber
(Rust)
Jul 9, 2024
Panic when parsing invalid palette-color images in golang.org/x/image
High
CVE-2024-24792
was published
for
golang.org/x/image
(Go)
Jun 26, 2024
badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on...
High
Unreviewed
CVE-2023-5038
was published
Jun 25, 2024
@strapi/plugin-upload has a Denial-of-Service via Improper Exception Handling
Moderate
CVE-2024-31217
was published
for
@strapi/plugin-upload
(npm)
Jun 12, 2024
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 integration...
Moderate
Unreviewed
CVE-2024-31904
was published
May 22, 2024
Denial of service (DoS) vulnerability in the AMS module
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-32995
was published
May 14, 2024
Malformed S2 Nonce Get command classes can be sent to crash the gateway. A hard reset is...
High
Unreviewed
CVE-2024-3052
was published
Apr 27, 2024
Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end...
High
Unreviewed
CVE-2024-3051
was published
Apr 27, 2024
In modem-ps-nas-ngmm, there is a possible undefined behavior due to incorrect error handling....
Unknown
Unreviewed
CVE-2023-52342
was published
Apr 8, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could...
Moderate
Unreviewed
CVE-2024-20048
was published
Apr 1, 2024
Elasticsearch Uncaught Exception leading to crash
Moderate
CVE-2024-23449
was published
for
org.elasticsearch:elasticsearch
(Maven)
Mar 29, 2024
A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an...
High
Unreviewed
CVE-2024-20276
was published
Mar 27, 2024
A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to...
Moderate
Unreviewed
CVE-2024-28835
was published
Mar 21, 2024
A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets...
High
Unreviewed
CVE-2023-3966
was published
Feb 22, 2024
Malformed Device Reset Locally Command Class packets can be sent to the controller, causing the...
Moderate
Unreviewed
CVE-2023-6533
was published
Feb 21, 2024
Malformed S2 Nonce Get Command Class packets can be sent to crash PC Controller v5.54.0 and...
Moderate
Unreviewed
CVE-2023-6640
was published
Feb 21, 2024
Uncaught Exception in Macro Expecting Native Function to Exist
Moderate
GHSA-6wr5-jmpr-mjcx
was published
for
surrealdb
(Rust)
Feb 21, 2024
Uncaught Exception Handling Parsing Errors on Line Terminators
Moderate
GHSA-8xff-473h-f863
was published
for
surrealdb
(Rust)
Feb 21, 2024
ProTip!
Advisories are also available from the
GraphQL API