GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,251
Erlang
31
GitHub Actions
21
Go
2,018
Maven
5,000+
npm
3,725
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
861
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
236,437 advisories
Filter by severity
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Unknown
Unreviewed
CVE-2021-0937
was published
Dec 6, 2024
In tscpu_write_GPIO_out and mtkts_Abts_write of mtk_ts_Abts.c, there is a possible buffer...
Unknown
Unreviewed
CVE-2017-13308
was published
Dec 6, 2024
In reboot_block_command of htc reboot_block driver, there is a possible
stack buffer overflow...
Unknown
Unreviewed
CVE-2018-9386
was published
Dec 6, 2024
In store_upgrade and store_cmd of drivers/input/touchscreen/stm/ftm4_pdc.c, there are out of...
Unknown
Unreviewed
CVE-2018-9388
was published
Dec 6, 2024
Buffer Overflow vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2-...
Unknown
Unreviewed
CVE-2024-30963
was published
Dec 6, 2024
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble version was discovered to contain...
Unknown
Unreviewed
CVE-2024-38910
was published
Dec 6, 2024
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to...
Unknown
Unreviewed
CVE-2024-38920
was published
Dec 6, 2024
Buffer Overflow vulnerability in Open Robotic Operating System 2 ROS2 navigation2- ROS2-humble&&...
Unknown
Unreviewed
CVE-2024-37860
was published
Dec 6, 2024
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to...
Unknown
Unreviewed
CVE-2024-37861
was published
Dec 6, 2024
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to...
Unknown
Unreviewed
CVE-2024-37863
was published
Dec 6, 2024
Buffer Overflow vulnerability in Open Robotic Robotic Operating System 2 ROS2 navigation2- ROS2...
Unknown
Unreviewed
CVE-2024-37862
was published
Dec 6, 2024
In bta_hd_set_report_act of bta_hd_act.cc, there is a possible out-of-bounds read due to an...
Moderate
Unreviewed
CVE-2018-9481
was published
Nov 20, 2024
A stored cross-site scripting (XSS) vulnerability in the Device Settings section of LibreNMS v24...
Unknown
Unreviewed
CVE-2024-53457
was published
Dec 6, 2024
In update_gps_sv and output_vzw_debug of
vendor/mediatek/proprietary/hardware/connectivity...
Unknown
Unreviewed
CVE-2018-9391
was published
Dec 6, 2024
Buffer Overflow vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2-...
Unknown
Unreviewed
CVE-2024-30962
was published
Dec 6, 2024
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2...
Unknown
Unreviewed
CVE-2024-30964
was published
Dec 6, 2024
In procfile_write of gl_proc.c, there is a possible out of bounds read of a
function pointer...
Unknown
Unreviewed
CVE-2018-9390
was published
Dec 6, 2024
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2...
Unknown
Unreviewed
CVE-2024-30961
was published
Dec 6, 2024
Incorrect permission assignment in temporary access requests component in Devolutions Remote...
High
Unreviewed
CVE-2024-12149
was published
Dec 4, 2024
Incorrect authorization in permission validation component in Devolutions Server 2024.3.6.0 and...
Moderate
Unreviewed
CVE-2024-12148
was published
Dec 4, 2024
Incorrect permission assignment in the user migration feature in Devolutions Server 2024.3.8.0...
Moderate
Unreviewed
CVE-2024-12151
was published
Dec 4, 2024
An issue in kmqtt v0.2.7 allows attackers to cause a Denial of Service (DoS) via a crafted request.
High
Unreviewed
CVE-2024-50947
was published
Dec 4, 2024
Itsourcecode Online Discussion Forum Project v.1.0.0 is vulnerable to Cross Site Scripting (XSS)...
Moderate
Unreviewed
CVE-2024-52676
was published
Dec 4, 2024
app/View/GalaxyClusters/cluster_export_misp_galaxy.ctp in MISP through 2.5.2 has stored XSS when...
Moderate
Unreviewed
CVE-2024-54674
was published
Dec 4, 2024
app/webroot/js/workflows-editor/workflows-editor.js in MISP through 2.5.2 has stored XSS in the...
Moderate
Unreviewed
CVE-2024-54675
was published
Dec 4, 2024
ProTip!
Advisories are also available from the
GraphQL API