Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

904 advisories

Loading
In Fluent Bit 2.1.8 through 2.2.1, a NULL pointer dereference can be caused via an invalid HTTP... High Unreviewed
CVE-2024-23722 was published Mar 26, 2024
In mz-automation libiec61850 v1.4.0, a NULL Pointer Dereference was detected in the... High Unreviewed
CVE-2024-28286 was published Mar 21, 2024
Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render. High Unreviewed
CVE-2023-43541 was published Mar 4, 2024
A Null pointer dereference in usr/sbin/httpd in ASUS AC68U 3.0.0.4.384.82230 allows remote... High Unreviewed
CVE-2024-26342 was published Feb 28, 2024
OpenDMARC 1.4.2 contains a null pointer dereference vulnerability in /OpenDMARC/libopendmarc... High Unreviewed
CVE-2024-25768 was published Feb 26, 2024
A null pointer dereference in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.11,... High Unreviewed
CVE-2023-29180 was published Feb 22, 2024
cryptography NULL pointer dereference with pkcs12.serialize_key_and_certificates when called with a non-matching certificate and private key and an hmac_hash override High
CVE-2024-26130 was published for cryptography (pip) Feb 21, 2024
Alexander-Programming cd-work
In onNullBinding of TileLifecycleManager.java, there is a possible way to launch an activity from... High Unreviewed
CVE-2024-0035 was published Feb 16, 2024
When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests... High Unreviewed
CVE-2024-24989 was published Feb 14, 2024
When a virtual server is enabled with VLAN group and SNAT listener is configured, undisclosed... High Unreviewed
CVE-2024-24775 was published Feb 14, 2024
When a BIG-IP Advanced WAF or BIG-IP ASM policy with a Request Body Handling option is attached... High Unreviewed
CVE-2024-23308 was published Feb 14, 2024
When BIG-IP AFM Device DoS or DoS profile is configured with NXDOMAIN attack vector and bad... High Unreviewed
CVE-2024-21763 was published Feb 14, 2024
.NET Denial of Service Vulnerability High Unreviewed
CVE-2024-21404 was published Feb 13, 2024
Twister Antivirus v8.17 allows Elevation of Privileges on the computer where it's installed by... High Unreviewed
CVE-2024-1096 was published Feb 13, 2024
A vulnerability has been identified in OpenPCS 7 V9.1 (All versions), SIMATIC BATCH V9.1 (All... High Unreviewed
CVE-2023-48364 was published Feb 13, 2024
A vulnerability has been identified in OpenPCS 7 V9.1 (All versions), SIMATIC BATCH V9.1 (All... High Unreviewed
CVE-2023-48363 was published Feb 13, 2024
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. High Unreviewed
CVE-2023-43522 was published Feb 6, 2024
Transmit requests in Xen's virtual network protocol can consist of multiple parts. While not... High Unreviewed
CVE-2023-46838 was published Jan 29, 2024
A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS Evolved on ACX7024,... High Unreviewed
CVE-2024-21602 was published Jan 12, 2024
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2024-20661 was published Jan 9, 2024
IEEE 1609.2 dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows... High Unreviewed
CVE-2024-0209 was published Jan 3, 2024
Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host. High Unreviewed
CVE-2023-33109 was published Jan 2, 2024
Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call. High Unreviewed
CVE-2023-33036 was published Jan 2, 2024
OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other products, allows remote... High Unreviewed
CVE-2023-38321 was published Dec 25, 2023
C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference via the zfp/blosc2-zfp... High Unreviewed
CVE-2023-37187 was published Dec 25, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database