Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+

186 advisories

github.com/nats-io/nats-server Import token permissions checking not enforced High
GHSA-j756-f273-xhp4 was published for github.com/nats-io/nats-server/v2 (Go) May 21, 2021
Authorization bypass in github.com/dgrijalva/jwt-go High
CVE-2020-26160 was published for github.com/dgrijalva/jwt-go (Go) May 18, 2021
@hono/node-server has Denial of Service risk when receiving Host header that cannot be parsed High
CVE-2024-32652 was published for @hono/node-server (npm) Apr 19, 2024
Traefik vulnerable to denial of service with Content-length header High
CVE-2024-28869 was published for github.com/traefik/traefik (Go) Apr 12, 2024
Prajithp
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd)... High Unreviewed
CVE-2024-30382 was published Apr 12, 2024
An issue was discovered in Exynos Mobile Processor and Modem for Exynos Modem 5123, Exynos Modem... High Unreviewed
CVE-2023-29092 was published May 9, 2023
XNSoft Nconvert 7.136 has an Exception Handler Chain Corrupted via a crafted image file.... High Unreviewed
CVE-2023-43251 was published Oct 19, 2023
When IPSec is configured on a Virtual Server, undisclosed traffic can cause TMM to terminate.  ... High Unreviewed
CVE-2023-41085 was published Oct 10, 2023
Improper Handling of Exceptional Conditions vulnerability in Daurnimator HTTP Library for Lua... High Unreviewed
CVE-2023-4540 was published Sep 5, 2023
Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola... High Unreviewed
CVE-2023-23774 was published Aug 29, 2023
An uncaught exception vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing... High Unreviewed
CVE-2023-33370 was published Aug 3, 2023
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper... High Unreviewed
CVE-2023-36832 was published Jul 14, 2023
Vulnerability of failures to capture exceptions in the communication framework. Successful... High Unreviewed
CVE-2023-1695 was published Jul 6, 2023
In Progress MOVEit Transfer before 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022... High Unreviewed
CVE-2023-36933 was published Jul 5, 2023
In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to... High Unreviewed
CVE-2023-20692 was published Jul 4, 2023
On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent... High Unreviewed
CVE-2023-24510 was published Jun 6, 2023
Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to... High Unreviewed
CVE-2022-27978 was published Apr 26, 2023
No exception handling vulnerability which revealed sensitive or excessive information to users. High Unreviewed
CVE-2023-23837 was published Apr 25, 2023
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware,... High Unreviewed
CVE-2023-0204 was published Apr 22, 2023
An issue was discovered in ONOS 2.5.1. In IntentManager, the install-requested intent (which... High Unreviewed
CVE-2021-38363 was published Apr 20, 2023
mwlib 0.13 through 0.13.4 has a denial of service vulnerability when parsing #iferror magic... High Unreviewed
CVE-2012-1109 was published May 24, 2022
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain... High Unreviewed
CVE-2019-14287 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2019-1342 was published May 24, 2022
Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a... High Unreviewed
CVE-2019-16866 was published May 24, 2022
In a rare scenario, Check Point R80.30 Security Gateway before JHF Take 50 managed by Check Point... High Unreviewed
CVE-2019-8462 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API