GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
20 advisories
Filter by severity
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the...
High
Unreviewed
CVE-2024-47490
was published
Oct 11, 2024
Sudo for Windows Spoofing Vulnerability
Moderate
Unreviewed
CVE-2024-43571
was published
Oct 8, 2024
The goTenna Pro series does not authenticate public keys which allows an unauthenticated attacker...
High
Unreviewed
CVE-2024-47125
was published
Sep 26, 2024
Multiple Pimax products accept WebSocket connections from unintended endpoints. If this...
High
Unreviewed
CVE-2024-41889
was published
Aug 5, 2024
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper...
Moderate
Unreviewed
CVE-2024-39537
was published
Jul 11, 2024
In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM...
High
Unreviewed
CVE-2024-6222
was published
Jul 9, 2024
The interactive service in OpenVPN 2.6.9 and earlier allows the OpenVPN service pipe to be...
High
Unreviewed
CVE-2024-24974
was published
Jul 8, 2024
Improper restriction of communication channel to intended endpoints issue exists in Ricoh...
Moderate
Unreviewed
CVE-2024-36252
was published
Jun 19, 2024
Mullvad VPN through 2024.1 on Android does not set a DNS server in the blocking state (after a...
High
Unreviewed
CVE-2024-34446
was published
May 3, 2024
Dell OS10 Networking Switches running 10.5.2.x and above contain a vulnerability with zeroMQ...
Critical
Unreviewed
CVE-2023-28078
was published
Feb 15, 2024
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the...
Moderate
Unreviewed
CVE-2023-44195
was published
Oct 13, 2023
NVIDIA Jetson contains a vulnerability in CBoot, where the PCIe controller is initialized...
High
Unreviewed
CVE-2023-25515
was published
Jun 23, 2023
NVIDIA Jetson contains a vulnerability in CBoot, where the PCIe controller is initialized...
Moderate
Unreviewed
CVE-2023-25518
was published
Jun 23, 2023
Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea...
Moderate
Unreviewed
CVE-2022-38125
was published
Apr 19, 2023
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the...
High
Unreviewed
CVE-2023-28971
was published
Apr 18, 2023
The IP filter in ABAP Platform and SAP Web Dispatcher - versions WEBDISP 7.85, 7.89, KERNEL 7.85,...
Moderate
Unreviewed
CVE-2023-29108
was published
Apr 11, 2023
coreDNS vulnerable to Improper Restriction of Communication Channel to Intended Endpoints
Moderate
CVE-2022-2837
was published
for
github.com/coredns/coredns
(Go)
Mar 3, 2023
coreDNS vulnerable to Improper Restriction of Communication Channel to Intended Endpoints
Moderate
CVE-2022-2835
was published
for
github.com/coredns/coredns
(Go)
Mar 3, 2023
An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be...
Moderate
Unreviewed
CVE-2022-2663
was published
Sep 2, 2022
This issue affects: Secomea GateManager All versions prior to 9.6. Improper Check of host header...
Moderate
Unreviewed
CVE-2021-32004
was published
Nov 23, 2021
ProTip!
Advisories are also available from the
GraphQL API