Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,076
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

34 advisories

Loading
Mattermost Mobile Apps versions <=2.22.0 fail to properly validate post props which allows a... Moderate Unreviewed
CVE-2025-21083 was published Jan 15, 2025
Mattermost versions 10.2.x <= 10.2.0, 9.11.x <= 9.11.5, 10.0.x <= 10.0.3, 10.1.x <= 10.1.3 fail... Moderate Unreviewed
CVE-2025-20088 was published Jan 15, 2025
Mattermost Mobile Apps versions <=2.22.0 fail to properly validate post props which allows a... Moderate Unreviewed
CVE-2025-20036 was published Jan 15, 2025
Improper input validation in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow... High Unreviewed
CVE-2024-48858 was published Jan 14, 2025
OpenVPN before 2.6.11 does not santize PUSH_REPLY messages properly which attackers can use to... Critical Unreviewed
CVE-2024-5594 was published Jan 6, 2025
An improper parsing vulnerability was reported in the FileZ client that could allow a crafted... High Unreviewed
CVE-2024-8058 was published Dec 16, 2024
Credentials Disclosure vulnerabilities allow access to on board project back-up bundles. ... High Unreviewed
CVE-2024-51546 was published Dec 5, 2024
Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly... Critical Unreviewed
CVE-2024-51551 was published Dec 5, 2024
Data Validation / Data Sanitization vulnerabilities in Linux allows unvalidated and unsanitized... Critical Unreviewed
CVE-2024-51550 was published Dec 5, 2024
Moxa’s IP Cameras are affected by a medium-severity vulnerability, CVE-2024-9404, which could... Moderate Unreviewed
CVE-2024-9404 was published Dec 4, 2024
Improper Validation of Specified Type of Input vulnerability in Mitsubishi Electric Corporation... High Unreviewed
CVE-2024-8403 was published Nov 19, 2024
The Waybox Enel X web management application contains a PHP-type juggling vulnerability that may... Moderate Unreviewed
CVE-2023-29126 was published Nov 5, 2024
Improper validation of specified type of input for some Intel(R) PROSet/Wireless and Intel(R)... Moderate Unreviewed
CVE-2023-32651 was published Oct 29, 2024
A vulnerability in the TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA)... High Unreviewed
CVE-2024-20494 was published Oct 23, 2024
A vulnerability in the Dynamic Access Policies (DAP) feature of Cisco Adaptive Security Appliance... High Unreviewed
CVE-2024-20408 was published Oct 23, 2024
An Improper Validation of Specified Type of Input vulnerability in the packet forwarding engine ... High Unreviewed
CVE-2024-47504 was published Oct 11, 2024
The MiCard PLUS Ci and MiCard PLUS BLE reader products developed by rf IDEAS and rebranded by NT... Moderate Unreviewed
CVE-2024-1578 was published Sep 16, 2024
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.62 allowed a... Moderate Unreviewed
CVE-2024-3175 was published Jul 17, 2024
ServiceNow has addressed an input validation vulnerability that was identified in Vancouver and... Critical Unreviewed
CVE-2024-4879 was published Jul 10, 2024
Improper Input Validation vulnerability in ABB ASPECT-Enterprise on Linux, ABB NEXUS Series on... Critical Unreviewed
CVE-2024-6298 was published Jul 5, 2024
IBM QRadar Suite Software 1.10.12.0 through 1.10.21.0 and IBM Cloud Pak for Security 1.10.12.0... High Unreviewed
CVE-2023-47726 was published Jun 18, 2024
IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0... Moderate Unreviewed
CVE-2023-47727 was published May 2, 2024
An Improper Validation of Specified Type of Input vulnerability in Routing Protocol Daemon (RPD)... High Unreviewed
CVE-2024-30395 was published Apr 12, 2024
In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP... Moderate Unreviewed
CVE-2024-31948 was published Apr 7, 2024
In Splunk Enterprise versions below 9.2.1, 9.1.4, and 9.0.9, the Dashboard Examples Hub in the... High Unreviewed
CVE-2024-29946 was published Mar 27, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database