Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
86
GitHub Actions
54
Go
4,169
Maven
5,000+
npm
5,000+
NuGet
1,019
pip
5,000+
Pub
13
RubyGems
1,102
Rust
1,421
Swift
61
Unreviewed advisories
All unreviewed
5,000+

204 advisories

Loading
Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects High
CVE-2024-43367 was published for boa_engine (Rust) Aug 14, 2024
ctcpip Credited to ctcpip, arai-a, jedel1043, jasonwilliams, and nekevss arai-a arai-a
jedel1043 jedel1043 jasonwilliams jasonwilliams nekevss nekevss
Vulnerability of uncaught exceptions in the Graphics module Impact: Successful exploitation of... Critical Unreviewed
CVE-2024-42037 was published Aug 8, 2024
panic on parsing crafted phonenumber inputs Critical
CVE-2024-39697 was published for phonenumber (Rust) Jul 9, 2024
rubdos Credited to rubdos
Panic when parsing invalid palette-color images in golang.org/x/image High
CVE-2024-24792 was published for golang.org/x/image (Go) Jun 26, 2024
badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on... High Unreviewed
CVE-2023-5038 was published Jun 25, 2024
@strapi/plugin-upload has a Denial-of-Service via Improper Exception Handling Moderate
CVE-2024-31217 was published for @strapi/plugin-upload (npm) Jun 12, 2024
CxDavidepaalte Credited to CxDavidepaalte, derrickmehaffy, Marc-Roig, and alexandrebodin derrickmehaffy derrickmehaffy
Marc-Roig Marc-Roig alexandrebodin alexandrebodin
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 integration... Moderate Unreviewed
CVE-2024-31904 was published May 22, 2024
Denial of service (DoS) vulnerability in the AMS module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-32995 was published May 14, 2024
Malformed S2 Nonce Get command classes can be sent to crash the gateway. A hard reset is... High Unreviewed
CVE-2024-3052 was published Apr 27, 2024
Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end... High Unreviewed
CVE-2024-3051 was published Apr 27, 2024
In modem-ps-nas-ngmm, there is a possible undefined behavior due to incorrect error handling.... High Unreviewed
CVE-2023-52342 was published Apr 8, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could... Moderate Unreviewed
CVE-2024-20049 was published Apr 1, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could... Moderate Unreviewed
CVE-2024-20048 was published Apr 1, 2024
Elasticsearch Uncaught Exception leading to crash Moderate
CVE-2024-23449 was published for org.elasticsearch:elasticsearch (Maven) Mar 29, 2024
AnonySE26 Credited to AnonySE26
A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an... High Unreviewed
CVE-2024-20276 was published Mar 27, 2024
A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to... Moderate Unreviewed
CVE-2024-28835 was published Mar 21, 2024
A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets... High Unreviewed
CVE-2023-3966 was published Feb 22, 2024
Malformed Device Reset Locally Command Class packets can be sent to the controller, causing the... Moderate Unreviewed
CVE-2023-6533 was published Feb 21, 2024
Malformed S2 Nonce Get Command Class packets can be sent to crash PC Controller v5.54.0 and... Moderate Unreviewed
CVE-2023-6640 was published Feb 21, 2024
Uncaught Exception in Macro Expecting Native Function to Exist Moderate
GHSA-6wr5-jmpr-mjcx was published for surrealdb (Rust) Feb 21, 2024
idofilus Credited to idofilus
Uncaught Exception Handling Parsing Errors on Line Terminators Moderate
GHSA-8xff-473h-f863 was published for surrealdb (Rust) Feb 21, 2024
Cheyenne1025 Credited to Cheyenne1025
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8 are susceptible to a Denial... Moderate Unreviewed
CVE-2024-21983 was published Feb 17, 2024
StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through 11.6.0.13 are susceptible to... Moderate Unreviewed
CVE-2023-27318 was published Feb 5, 2024
Some WASM source files could have caused a crash when loaded in devtools. This vulnerability... Moderate Unreviewed
CVE-2024-0754 was published Jan 23, 2024
Uncaught Exception in surrealdb Moderate
GHSA-jm4v-58r5-66hj was published for surrealdb (Rust) Jan 18, 2024
Tu0Laj1 Credited to Tu0Laj1 and jabis jabis jabis
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database