Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

100,088 advisories

Loading
Kubernetes kubelet arbitrary command execution High
CVE-2024-10220 was published for k8s.io/kubernetes (Go) Nov 22, 2024
Tornado has an HTTP cookie parsing DoS vulnerability High
CVE-2024-52804 was published for tornado (pip) Nov 22, 2024
kexinoh
Jenkins HTML Publisher Plugin Stored XSS vulnerability High
CVE-2024-28150 was published for org.jenkins-ci.plugins:htmlpublisher (Maven) Mar 6, 2024
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software... High Unreviewed
CVE-2024-48981 was published Nov 20, 2024
In ArrayConcatVisitor of builtins-array.cc, there is a possible type confusion due to improper... High Unreviewed
CVE-2018-9433 was published Nov 20, 2024
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software... High Unreviewed
CVE-2024-48983 was published Nov 20, 2024
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software... High Unreviewed
CVE-2024-48985 was published Nov 20, 2024
In the Linux kernel, the following vulnerability has been resolved: net/sched: stop... High Unreviewed
CVE-2024-53057 was published Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOBs when... High Unreviewed
CVE-2024-50151 was published Nov 7, 2024
Tenda W9 v1.0.0.7(4456) was discovered to contain a hardcoded password vulnerability in /etc_ro... High Unreviewed
CVE-2024-52788 was published Nov 19, 2024
Tenda W30E v2.0 V16.01.0.8 was discovered to contain a hardcoded password vulnerability in ... High Unreviewed
CVE-2024-52789 was published Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix overloading of... High Unreviewed
CVE-2024-50164 was published Nov 7, 2024
In ResStringPool::setTo of ResourceTypes.cpp, there is a possible out of bounds write due to a... High Unreviewed
CVE-2018-9338 was published Nov 19, 2024
In ResStringPool::setTo of ResourceTypes.cpp, it's possible for an attacker to control the value... High Unreviewed
CVE-2018-9340 was published Nov 19, 2024
In writeTypedArrayList and readTypedArrayList of Parcel.java, there is a possible escalation of... High Unreviewed
CVE-2018-9339 was published Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved: media: mgb4: protect driver... High Unreviewed
CVE-2024-53062 was published Nov 19, 2024
In sdpu_extract_attr_seq of sdp_utils.cc, there is a possible out of bounds read due to an... High Unreviewed
CVE-2018-9456 was published Nov 20, 2024
In mtkscoaudio debugfs there is a possible arbitrary kernel memory write due to missing bounds... High Unreviewed
CVE-2018-9368 was published Nov 19, 2024
In FT_ACDK_CCT_V2_OP_ISP_SET_TUNING_PARAS of Meta_CCAP_Para.cpp, there is a possible out of... High Unreviewed
CVE-2018-9367 was published Nov 19, 2024
In download.c there is a special mode allowing user to download data into memory and causing... High Unreviewed
CVE-2018-9370 was published Nov 19, 2024
In bootloader there is fastboot command allowing user specified kernel command line arguments.... High Unreviewed
CVE-2018-9369 was published Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved: media: s5p-jpeg: prevent... High Unreviewed
CVE-2024-53061 was published Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix out of... High Unreviewed
CVE-2024-50158 was published Nov 7, 2024
In the Linux kernel, the following vulnerability has been resolved: netdevsim: use cond_resched(... High Unreviewed
CVE-2024-50155 was published Nov 7, 2024
In the Linux kernel, the following vulnerability has been resolved: ice: Fix increasing MSI-X on... High Unreviewed
CVE-2024-50042 was published Oct 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database