GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
186 advisories
Filter by severity
github.com/nats-io/nats-server Import token permissions checking not enforced
High
GHSA-j756-f273-xhp4
was published
for
github.com/nats-io/nats-server/v2
(Go)
May 21, 2021
Authorization bypass in github.com/dgrijalva/jwt-go
High
CVE-2020-26160
was published
for
github.com/dgrijalva/jwt-go
(Go)
May 18, 2021
@hono/node-server has Denial of Service risk when receiving Host header that cannot be parsed
High
CVE-2024-32652
was published
for
@hono/node-server
(npm)
Apr 19, 2024
Traefik vulnerable to denial of service with Content-length header
High
CVE-2024-28869
was published
for
github.com/traefik/traefik
(Go)
Apr 12, 2024
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd)...
High
Unreviewed
CVE-2024-30382
was published
Apr 12, 2024
An issue was discovered in Exynos Mobile Processor and Modem for Exynos Modem 5123, Exynos Modem...
High
Unreviewed
CVE-2023-29092
was published
May 9, 2023
XNSoft Nconvert 7.136 has an Exception Handler Chain Corrupted via a crafted image file....
High
Unreviewed
CVE-2023-43251
was published
Oct 19, 2023
When IPSec is configured on a Virtual Server, undisclosed traffic can cause TMM to terminate.
...
High
Unreviewed
CVE-2023-41085
was published
Oct 10, 2023
Improper Handling of Exceptional Conditions vulnerability in Daurnimator HTTP Library for Lua...
High
Unreviewed
CVE-2023-4540
was published
Sep 5, 2023
Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola...
High
Unreviewed
CVE-2023-23774
was published
Aug 29, 2023
An uncaught exception vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing...
High
Unreviewed
CVE-2023-33370
was published
Aug 3, 2023
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper...
High
Unreviewed
CVE-2023-36832
was published
Jul 14, 2023
Vulnerability of failures to capture exceptions in the communication framework. Successful...
High
Unreviewed
CVE-2023-1695
was published
Jul 6, 2023
In Progress MOVEit Transfer before 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022...
High
Unreviewed
CVE-2023-36933
was published
Jul 5, 2023
In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to...
High
Unreviewed
CVE-2023-20692
was published
Jul 4, 2023
On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent...
High
Unreviewed
CVE-2023-24510
was published
Jun 6, 2023
Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to...
High
Unreviewed
CVE-2022-27978
was published
Apr 26, 2023
No exception handling vulnerability which revealed sensitive or excessive information to users.
High
Unreviewed
CVE-2023-23837
was published
Apr 25, 2023
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware,...
High
Unreviewed
CVE-2023-0204
was published
Apr 22, 2023
An issue was discovered in ONOS 2.5.1. In IntentManager, the install-requested intent (which...
High
Unreviewed
CVE-2021-38363
was published
Apr 20, 2023
mwlib 0.13 through 0.13.4 has a denial of service vulnerability when parsing #iferror magic...
High
Unreviewed
CVE-2012-1109
was published
May 24, 2022
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain...
High
Unreviewed
CVE-2019-14287
was published
May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly...
High
Unreviewed
CVE-2019-1342
was published
May 24, 2022
Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a...
High
Unreviewed
CVE-2019-16866
was published
May 24, 2022
In a rare scenario, Check Point R80.30 Security Gateway before JHF Take 50 managed by Check Point...
High
Unreviewed
CVE-2019-8462
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API