GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,014
Maven
5,000+
npm
3,721
NuGet
662
pip
3,393
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
121 advisories
Filter by severity
WinZip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass...
High
Unreviewed
CVE-2024-8811
was published
Nov 22, 2024
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could...
Moderate
Unreviewed
CVE-2021-1494
was published
Nov 15, 2024
Protection mechanism failure in the SPP for some Intel(R) Processors may allow an authenticated...
High
Unreviewed
CVE-2024-36242
was published
Nov 13, 2024
Protection mechanism failure in the SPP for some Intel(R) Xeon(R) processor family (E-Core) may...
Low
Unreviewed
CVE-2024-38660
was published
Nov 13, 2024
Windows Defender Application Control (WDAC) Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-43645
was published
Nov 12, 2024
Windows Package Library Manager Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-38203
was published
Nov 12, 2024
During internal Axis Security Development Model (ASDM) threat-modelling, a flaw was found in the...
High
Unreviewed
CVE-2023-5553
was published
Nov 21, 2023
Protection mechanism failure for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi...
Moderate
Unreviewed
CVE-2023-32644
was published
Oct 29, 2024
Protection mechanism failure in some Intel(R) OFU software before version 14.1.31 may allow an...
High
Unreviewed
CVE-2023-25945
was published
Oct 29, 2024
Code Integrity Guard Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-43585
was published
Oct 8, 2024
Windows Scripting Engine Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-43584
was published
Oct 8, 2024
BitLocker Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-43513
was published
Oct 8, 2024
A vulnerability in the REST API endpoints of Cisco NDFC could allow an authenticated, low...
Moderate
Unreviewed
CVE-2024-20438
was published
Oct 2, 2024
A CWE-693 “Protection Mechanism Failure” vulnerability in the embedded Chromium browser ...
Moderate
Unreviewed
CVE-2023-45593
was published
Mar 5, 2024
An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1...
Moderate
Unreviewed
CVE-2023-45372
was published
Oct 9, 2023
Mattermost Mobile Apps versions <=2.18.0 fail to disable autocomplete during login while typing...
Moderate
Unreviewed
CVE-2024-45833
was published
Sep 16, 2024
Windows Mark of the Web Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-38217
was published
Sep 10, 2024
Windows Mark of the Web Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-43487
was published
Sep 10, 2024
Microsoft Publisher Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-38226
was published
Sep 10, 2024
In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pedestrians...
Moderate
Unreviewed
CVE-2024-33903
was published
Apr 29, 2024
A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.4 for...
High
Unreviewed
CVE-2022-48611
was published
Apr 26, 2024
The WP Cerber Security plugin for WordPress is vulnerable to IP Protection bypass in versions up...
Moderate
Unreviewed
CVE-2022-4100
was published
Aug 31, 2024
Windows Remote Desktop Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2023-35352
was published
Jul 11, 2023
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20284
was published
Aug 28, 2024
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20286
was published
Aug 28, 2024
ProTip!
Advisories are also available from the
GraphQL API