GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
825 advisories
Filter by severity
A null pointer dereference in Ivanti Connect Secure before version 22.7R2.1 and Ivanti Policy...
High
Unreviewed
CVE-2024-8495
was published
Nov 12, 2024
A null pointer dereference in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated...
High
Unreviewed
CVE-2024-50317
was published
Nov 12, 2024
A null pointer dereference in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated...
High
Unreviewed
CVE-2024-50318
was published
Nov 12, 2024
A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as problematic. Affected...
High
Unreviewed
CVE-2024-10750
was published
Nov 4, 2024
TP Link MR200 V4 Firmware version 210201 was discovered to contain a null-pointer-dereference in...
High
Unreviewed
CVE-2024-22733
was published
Nov 1, 2024
there is a possible Null Pointer Dereference (modem crash) due to improper input validation. This...
High
Unreviewed
CVE-2024-44101
was published
Oct 25, 2024
A vulnerability in the Internet Key Exchange version 2 (IKEv2) protocol for VPN termination of...
High
Unreviewed
CVE-2024-20426
was published
Oct 23, 2024
A vulnerability in the TLS processing feature of Cisco Firepower Threat Defense (FTD) Software...
High
Unreviewed
CVE-2024-20339
was published
Oct 23, 2024
A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206...
High
Unreviewed
CVE-2024-10280
was published
Oct 23, 2024
A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanche before version 6.4.5...
High
Unreviewed
CVE-2024-47007
was published
Oct 8, 2024
A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service...
High
Unreviewed
CVE-2024-20436
was published
Sep 25, 2024
Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP...
High
Unreviewed
CVE-2024-39589
was published
Sep 18, 2024
Windows Networking Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38233
was published
Sep 10, 2024
Windows Networking Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38232
was published
Sep 10, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions...
High
Unreviewed
CVE-2023-28827
was published
Sep 10, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions...
High
Unreviewed
CVE-2023-30756
was published
Sep 10, 2024
An error in the ECMA-262 specification relating to Async Generators could have resulted in a type...
High
Unreviewed
CVE-2024-7652
was published
Sep 6, 2024
A null pointer dereference vulnerability in Zyxel ATP series firmware versions from V4.32 through...
High
Unreviewed
CVE-2024-42058
was published
Sep 3, 2024
A vulnerability in the DHCPv6 relay agent of Cisco NX-OS Software could allow an unauthenticated,...
High
Unreviewed
CVE-2024-20446
was published
Aug 28, 2024
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a ...
High
Unreviewed
CVE-2024-45239
was published
Aug 25, 2024
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a ...
High
Unreviewed
CVE-2024-45238
was published
Aug 25, 2024
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a ...
High
Unreviewed
CVE-2024-45235
was published
Aug 25, 2024
When TCP profile with Multipath TCP enabled (MPTCP) is configured on a Virtual Server,...
High
Unreviewed
CVE-2024-41164
was published
Aug 14, 2024
A NULL pointer dereference in WLAvalancheService in Ivanti Avalanche 6.3.1 allows a remote...
High
Unreviewed
CVE-2024-37399
was published
Aug 14, 2024
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38145
was published
Aug 13, 2024
ProTip!
Advisories are also available from the
GraphQL API