Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

431 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: clear wdev-... High Unreviewed
CVE-2024-50235 was published Nov 9, 2024
In the Linux kernel, the following vulnerability has been resolved: nvmet-auth: assign dh_key to... High Unreviewed
CVE-2024-50215 was published Nov 9, 2024
In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Fix the... High Unreviewed
CVE-2024-50159 was published Nov 7, 2024
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix possible... Moderate Unreviewed
CVE-2024-50152 was published Nov 7, 2024
Substance3D - Painter versions 10.1.0 and earlier are affected by a Double Free vulnerability... High Unreviewed
CVE-2024-47426 was published Nov 12, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43640 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49014 was published Nov 12, 2024
Windows SMBv3 Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43447 was published Nov 12, 2024
In the Linux kernel, the following vulnerability has been resolved: ext4: fix double brelse()... High Unreviewed
CVE-2024-49882 was published Oct 21, 2024
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is... High Unreviewed
CVE-2024-47404 was published Nov 5, 2024
In the Linux kernel, the following vulnerability has been resolved: nvme-fc: do not wait in vain... Moderate Unreviewed
CVE-2024-26846 was published Apr 17, 2024
In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to... Moderate Unreviewed
CVE-2024-3935 was published Oct 30, 2024
In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: fix a... High Unreviewed
CVE-2024-50071 was published Oct 29, 2024
In the Linux kernel, the following vulnerability has been resolved: ext4: drop ppath from... High Unreviewed
CVE-2024-49983 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix double... High Unreviewed
CVE-2024-49989 was published Oct 21, 2024
In lwis_device_event_states_clear_locked of lwis_event.c, there is a possible privilege... High Unreviewed
CVE-2024-44098 was published Oct 25, 2024
In the Linux kernel, the following vulnerability has been resolved: driver core: bus: Fix double... High Unreviewed
CVE-2024-50055 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Fix... High Unreviewed
CVE-2024-49853 was published Oct 21, 2024
Double free vulnerability in the Workstation service in Microsoft Windows allows remote... High Unreviewed
CVE-2009-1544 was published May 2, 2022
This issue tracks two CWE-416 Use After Free (UAF) and one CWE-415 Double Free vulnerabilities in... Moderate Unreviewed
CVE-2024-3187 was published Oct 17, 2024
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43514 was published Oct 8, 2024
Memory corruption while unmapping the fastrpc map when two threads can free the same map in... Moderate Unreviewed
CVE-2024-23379 was published Oct 7, 2024
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z... High Unreviewed
CVE-2024-20498 was published Oct 2, 2024
A double free vulnerability was found in QEMU virtio devices (virtio-gpu, virtio-serial-bus,... High Unreviewed
CVE-2024-3446 was published Apr 9, 2024
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix double... High Unreviewed
CVE-2024-46741 was published Sep 18, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database