Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,714
Erlang
34
GitHub Actions
28
Go
2,301
Maven
5,000+
npm
3,942
NuGet
711
pip
3,711
Pub
12
RubyGems
920
Rust
960
Swift
38
Unreviewed advisories
All unreviewed
5,000+

218 advisories

Loading
Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an... High Unreviewed
CVE-2025-29826 was published May 13, 2025
Memory corruption during memory assignment to headless peripheral VM due to incorrect error code... High Unreviewed
CVE-2024-49841 was published May 6, 2025
Vulnerability of improper authentication logic implementation in the file system module Impact:... High Unreviewed
CVE-2025-46584 was published May 6, 2025
React Router allows a DoS via cache poisoning by forcing SPA mode High
CVE-2025-43864 was published for react-router (npm) Apr 24, 2025
cold-try
LlamaIndex Improper Handling of Exceptional Conditions vulnerability High
CVE-2024-12704 was published for llama_index (pip) Mar 20, 2025
Cosmos SDK: x/group can halt when erroring in EndBlocker High
GHSA-47ww-ff84-4jrg was published for github.com/cosmos/cosmos-sdk (Go) Mar 12, 2025
A denial-of-service vulnerability exists in the affected products. The vulnerability could allow... High Unreviewed
CVE-2025-24478 was published Jan 28, 2025
Specifically crafted SCMI messages sent to an SCP running SCP-Firmware release versions up to and... High Unreviewed
CVE-2024-11864 was published Jan 14, 2025
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd)... High Unreviewed
CVE-2025-21602 was published Jan 9, 2025
The transport_message_handler function in SCP-Firmware release versions 2.11.0-2.15.0 does not... High Unreviewed
CVE-2024-9413 was published Nov 13, 2024
An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd)... High Unreviewed
CVE-2024-47491 was published Oct 11, 2024
An Improper Handling of Exceptional Conditions vulnerability in the rpd-server of Juniper... High Unreviewed
CVE-2024-39547 was published Oct 11, 2024
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper... High Unreviewed
CVE-2024-39526 was published Oct 11, 2024
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd)... High Unreviewed
CVE-2024-39525 was published Oct 9, 2024
Improper Handling of Exceptional Conditions vulnerability in the WatchGuard Single Sign-On Client... High Unreviewed
CVE-2024-6594 was published Sep 25, 2024
An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. The zmmailboxdmgr binary, a... High Unreviewed
CVE-2024-27442 was published Aug 12, 2024
NVIDIA Jetson Linux contains a vulnerability in NvGPU where error handling paths in GPU MMU... High Unreviewed
CVE-2024-0108 was published Aug 8, 2024
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (RPD)... High Unreviewed
CVE-2024-39552 was published Jul 11, 2024
An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd)... High Unreviewed
CVE-2024-39541 was published Jul 11, 2024
An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (RPD)... High Unreviewed
CVE-2024-39555 was published Jul 11, 2024
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd)... High Unreviewed
CVE-2024-39560 was published Jul 11, 2024
Apache Tomcat - Denial of Service High
CVE-2024-34750 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jul 3, 2024
westonsteimel
In mintplex-labs/anything-llm, a vulnerability exists in the thread update process that allows... High Unreviewed
CVE-2024-3150 was published Jun 6, 2024
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of... High Unreviewed
CVE-2024-36730 was published Jun 6, 2024
mintplex-labs/anything-llm is vulnerable to multiple security issues due to improper input... High Unreviewed
CVE-2024-3152 was published Jun 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database