Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

106 advisories

Loading
Windows Kernel-Mode Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38256 was published Sep 10, 2024
Windows Authentication Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38254 was published Sep 10, 2024
MongoDB Server may access non-initialized region of memory leading to unexpected behaviour when... Moderate Unreviewed
CVE-2024-8654 was published Sep 10, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Mark bpf prog stack... Moderate Unreviewed
CVE-2024-42063 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize... Moderate Unreviewed
CVE-2024-42311 was published Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Init the count... Moderate Unreviewed
CVE-2024-41052 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: net: nexthop: Initialize all... Moderate Unreviewed
CVE-2024-42283 was published Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved: inet_diag: fix kernel... Moderate Unreviewed
CVE-2021-47597 was published Jun 19, 2024
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38122 was published Aug 13, 2024
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38118 was published Aug 13, 2024
Use of uninitialized resource issue exists in IPCOM EX2 Series (V01L0x Series) V01L07NF0201 and... Moderate Unreviewed
CVE-2024-36454 was published Jun 12, 2024
In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: Initialize... Moderate Unreviewed
CVE-2024-42076 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: vdpa/mlx5: add validation... Moderate Unreviewed
CVE-2022-48864 was published Jul 16, 2024
In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack... Moderate Unreviewed
CVE-2024-32910 was published Jun 13, 2024
In aur_get_state of aurora.c, there is a possible information disclosure due to uninitialized... Moderate Unreviewed
CVE-2024-29785 was published Jun 13, 2024
In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible... Moderate Unreviewed
CVE-2024-29780 was published Jun 13, 2024
In the Linux kernel, the following vulnerability has been resolved: cpumap: Zero-initialise... Moderate Unreviewed
CVE-2024-27431 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: do_sys_name_to_handle(): use... Moderate Unreviewed
CVE-2024-26901 was published Apr 17, 2024
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf:... Moderate Unreviewed
CVE-2022-48654 was published Apr 28, 2024
Windows CoreMessaging Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-20694 was published Jan 9, 2024
there is a possible Information Disclosure due to uninitialized data. This could lead to local... Moderate Unreviewed
CVE-2024-29745 was published Apr 5, 2024
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-26209 was published Apr 9, 2024
Windows Mobile Hotspot Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-26220 was published Apr 9, 2024
An information disclosure vulnerability exists in the ClientConnect() functionality of SoftEther... Moderate Unreviewed
CVE-2023-31192 was published Oct 12, 2023
In writeToParcel of CursorWindow.cpp, there is a possible information disclosure due to... Moderate Unreviewed
CVE-2023-21276 was published Aug 15, 2023
ProTip! Advisories are also available from the GraphQL API