Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,198
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,702
NuGet
660
pip
3,328
Pub
11
RubyGems
883
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

824 advisories

Loading
A null pointer dereference in Ivanti Connect Secure before version 22.7R2.1 and Ivanti Policy... High Unreviewed
CVE-2024-8495 was published Nov 12, 2024
A null pointer dereference in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated... High Unreviewed
CVE-2024-50318 was published Nov 12, 2024
A null pointer dereference in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated... High Unreviewed
CVE-2024-50317 was published Nov 12, 2024
TP Link MR200 V4 Firmware version 210201 was discovered to contain a null-pointer-dereference in... High Unreviewed
CVE-2024-22733 was published Nov 1, 2024
A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as problematic. Affected... High Unreviewed
CVE-2024-10750 was published Nov 4, 2024
OpenDMARC 1.4.2 contains a null pointer dereference vulnerability in /OpenDMARC/libopendmarc... High Unreviewed
CVE-2024-25768 was published Feb 26, 2024
FreeChart v1.5.4 was discovered to contain a NullPointerException via the component /labels... High Unreviewed
CVE-2024-23076 was published Apr 10, 2024
there is a possible Null Pointer Dereference (modem crash) due to improper input validation. This... High Unreviewed
CVE-2024-44101 was published Oct 25, 2024
A vulnerability in the TLS processing feature of Cisco Firepower Threat Defense (FTD) Software... High Unreviewed
CVE-2024-20339 was published Oct 23, 2024
A vulnerability in the Internet Key Exchange version 2 (IKEv2) protocol for VPN termination of... High Unreviewed
CVE-2024-20426 was published Oct 23, 2024
A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206... High Unreviewed
CVE-2024-10280 was published Oct 23, 2024
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003... High Unreviewed
CVE-2011-1881 was published May 13, 2022
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003... High Unreviewed
CVE-2011-1231 was published May 13, 2022
The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP... High Unreviewed
CVE-2011-1282 was published May 13, 2022
A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanche before version 6.4.5... High Unreviewed
CVE-2024-47007 was published Oct 8, 2024
A null pointer dereference vulnerability in IPSec component of Ivanti Connect Secure (9.x, 22.x)... High Unreviewed
CVE-2024-22052 was published Apr 4, 2024
SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted... High Unreviewed
CVE-2023-40308 was published Sep 15, 2023
Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP... High Unreviewed
CVE-2024-39589 was published Sep 18, 2024
A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service... High Unreviewed
CVE-2024-20436 was published Sep 25, 2024
Windows Networking Denial of Service Vulnerability High Unreviewed
CVE-2024-38232 was published Sep 10, 2024
Windows Networking Denial of Service Vulnerability High Unreviewed
CVE-2024-38233 was published Sep 10, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions... High Unreviewed
CVE-2023-28827 was published Sep 10, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions... High Unreviewed
CVE-2023-30756 was published Sep 10, 2024
An error in the ECMA-262 specification relating to Async Generators could have resulted in a type... High Unreviewed
CVE-2024-7652 was published Sep 6, 2024
Null Pointer Dereference vulnerability in swfdump in swftools 0.9.2 allows attackers to crash the... High Unreviewed
CVE-2024-28458 was published Apr 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database