Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

852 advisories

Loading
FreeChart v1.5.4 was discovered to contain a NullPointerException via the component /labels... High Unreviewed
CVE-2024-23076 was published Apr 10, 2024
HTTP.sys Denial of Service Vulnerability High Unreviewed
CVE-2024-26219 was published Apr 9, 2024
A null pointer dereference vulnerability in IPSec component of Ivanti Connect Secure (9.x, 22.x)... High Unreviewed
CVE-2024-22052 was published Apr 4, 2024
A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS... High Unreviewed
CVE-2024-20312 was published Mar 27, 2024
Mesa 23.0.4 was discovered to contain a NULL pointer dereference in check_xshm() for the... High Unreviewed
CVE-2023-45931 was published Mar 27, 2024
In Fluent Bit 2.1.8 through 2.2.1, a NULL pointer dereference can be caused via an invalid HTTP... High Unreviewed
CVE-2024-23722 was published Mar 26, 2024
In mz-automation libiec61850 v1.4.0, a NULL Pointer Dereference was detected in the... High Unreviewed
CVE-2024-28286 was published Mar 21, 2024
Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render. High Unreviewed
CVE-2023-43541 was published Mar 4, 2024
A Null pointer dereference in usr/sbin/httpd in ASUS AC68U 3.0.0.4.384.82230 allows remote... High Unreviewed
CVE-2024-26342 was published Feb 28, 2024
OpenDMARC 1.4.2 contains a null pointer dereference vulnerability in /OpenDMARC/libopendmarc... High Unreviewed
CVE-2024-25768 was published Feb 26, 2024
A null pointer dereference in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.11,... High Unreviewed
CVE-2023-29180 was published Feb 22, 2024
In onNullBinding of TileLifecycleManager.java, there is a possible way to launch an activity from... High Unreviewed
CVE-2024-0035 was published Feb 16, 2024
When a virtual server is enabled with VLAN group and SNAT listener is configured, undisclosed... High Unreviewed
CVE-2024-24775 was published Feb 14, 2024
When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests... High Unreviewed
CVE-2024-24989 was published Feb 14, 2024
When a BIG-IP Advanced WAF or BIG-IP ASM policy with a Request Body Handling option is attached... High Unreviewed
CVE-2024-23308 was published Feb 14, 2024
When BIG-IP AFM Device DoS or DoS profile is configured with NXDOMAIN attack vector and bad... High Unreviewed
CVE-2024-21763 was published Feb 14, 2024
.NET Denial of Service Vulnerability High Unreviewed
CVE-2024-21404 was published Feb 13, 2024
Twister Antivirus v8.17 allows Elevation of Privileges on the computer where it's installed by... High Unreviewed
CVE-2024-1096 was published Feb 13, 2024
A vulnerability has been identified in OpenPCS 7 V9.1 (All versions), SIMATIC BATCH V9.1 (All... High Unreviewed
CVE-2023-48363 was published Feb 13, 2024
A vulnerability has been identified in OpenPCS 7 V9.1 (All versions), SIMATIC BATCH V9.1 (All... High Unreviewed
CVE-2023-48364 was published Feb 13, 2024
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. High Unreviewed
CVE-2023-43522 was published Feb 6, 2024
Transmit requests in Xen's virtual network protocol can consist of multiple parts. While not... High Unreviewed
CVE-2023-46838 was published Jan 29, 2024
A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS Evolved on ACX7024,... High Unreviewed
CVE-2024-21602 was published Jan 12, 2024
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2024-20661 was published Jan 9, 2024
IEEE 1609.2 dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows... High Unreviewed
CVE-2024-0209 was published Jan 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database