GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,198
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,702
NuGet
660
pip
3,328
Pub
11
RubyGems
883
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
68 advisories
Filter by severity
Windows Defender Application Control (WDAC) Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-43645
was published
Nov 12, 2024
Windows Package Library Manager Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-38203
was published
Nov 12, 2024
Protection mechanism failure for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi...
Moderate
Unreviewed
CVE-2023-32644
was published
Oct 29, 2024
Code Integrity Guard Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-43585
was published
Oct 8, 2024
BitLocker Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-43513
was published
Oct 8, 2024
A vulnerability in the REST API endpoints of Cisco NDFC could allow an authenticated, low...
Moderate
Unreviewed
CVE-2024-20438
was published
Oct 2, 2024
Mattermost Mobile Apps versions <=2.18.0 fail to disable autocomplete during login while typing...
Moderate
Unreviewed
CVE-2024-45833
was published
Sep 16, 2024
Windows Mark of the Web Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-43487
was published
Sep 10, 2024
Windows Mark of the Web Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-38217
was published
Sep 10, 2024
The WP Cerber Security plugin for WordPress is vulnerable to IP Protection bypass in versions up...
Moderate
Unreviewed
CVE-2022-4100
was published
Aug 31, 2024
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20284
was published
Aug 28, 2024
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20286
was published
Aug 28, 2024
Protection mechanism failure in some 3rd, 4th, and 5th Generation Intel(R) Xeon(R) Processors may...
Moderate
Unreviewed
CVE-2024-24980
was published
Aug 14, 2024
Windows Mark of the Web Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-38213
was published
Aug 13, 2024
Rapid7 InsightVM Console versions below 6.6.260 suffer from a protection mechanism failure...
Moderate
Unreviewed
CVE-2024-6504
was published
Jul 18, 2024
Openfind's Mail2000 has a vulnerability that allows the HttpOnly flag to be bypassed....
Moderate
Unreviewed
CVE-2024-6741
was published
Jul 15, 2024
BitLocker Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-38058
was published
Jul 9, 2024
Due to a Protection Mechanism Failure in SAP
NetWeaver Application Server for ABAP and ABAP...
Moderate
Unreviewed
CVE-2024-39599
was published
Jul 9, 2024
Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format...
Moderate
Unreviewed
CVE-2024-29510
was published
Jul 3, 2024
Visual Studio Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-30052
was published
Jun 11, 2024
Windows Mark of the Web Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-30050
was published
May 14, 2024
Microsoft Bing Search Spoofing Vulnerability
Moderate
Unreviewed
CVE-2024-30041
was published
May 14, 2024
In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pedestrians...
Moderate
Unreviewed
CVE-2024-33903
was published
Apr 29, 2024
Secure Boot Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-28919
was published
Apr 9, 2024
Secure Boot Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-28921
was published
Apr 9, 2024
ProTip!
Advisories are also available from the
GraphQL API