GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,947
Composer 4,273
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,235
npm 3,740
NuGet 668
pip 3,417
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,567

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,902 advisories

Filter by severity

Sort by

Least recently updated

Incorrect access control in the firmware update and download processes of Ruochan Smart v4.4.7... High Unreviewed

CVE-2024-48541 was published Oct 24, 2024

Incorrect access control in the firmware update and download processes of Yamaha Headphones... High Unreviewed

CVE-2024-48542 was published Oct 24, 2024

Incorrect access control in the firmware update and download processes of DreamCatcher Life v1.8... High Unreviewed

CVE-2024-48547 was published Oct 24, 2024

Incorrect access control in XIAO HE Smart 4.3.1 allows attackers to access sensitive information... Moderate Unreviewed

CVE-2024-48540 was published Oct 24, 2024

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ... Moderate Unreviewed

CVE-2024-20482 was published Oct 23, 2024

Archer Platform 2024.03 before version 2024.09 is affected by an API authorization bypass... Moderate Unreviewed

CVE-2024-49209 was published Oct 22, 2024

The workflow component in Liferay Portal 7.3.2 through 7.4.3.111, and Liferay DXP 2023.Q4.0... Critical Unreviewed

CVE-2024-38002 was published Oct 22, 2024

Archer Platform 2024.03 before version 2024.08 is affected by an authorization bypass... Moderate Unreviewed

CVE-2024-49208 was published Oct 22, 2024

A vulnerability has been found in didi DDMQ 1.0 and classified as critical. Affected by this... Moderate Unreviewed

CVE-2024-10173 was published Oct 20, 2024

Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with... High Unreviewed

CVE-2024-29821 was published Oct 19, 2024

Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with... High Unreviewed

CVE-2024-29213 was published Oct 19, 2024

A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone... Moderate Unreviewed

CVE-2024-20420 was published Oct 16, 2024

Vulnerability in the Oracle Field Service product of Oracle E-Business Suite (component: Field... High Unreviewed

CVE-2024-21271 was published Oct 15, 2024

Vulnerability in the Oracle Banking Liquidity Management product of Oracle Financial Services... High Unreviewed

CVE-2024-21285 was published Oct 15, 2024

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component:... High Unreviewed

CVE-2024-21268 was published Oct 15, 2024

Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price... High Unreviewed

CVE-2024-21266 was published Oct 15, 2024

Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite ... High Unreviewed

CVE-2024-21270 was published Oct 15, 2024

Vulnerability in the Oracle Contract Lifecycle Management for Public Sector product of Oracle E... High Unreviewed

CVE-2024-21278 was published Oct 15, 2024

Vulnerability in the PeopleSoft Enterprise HCM Global Payroll Core product of Oracle PeopleSoft ... High Unreviewed

CVE-2024-21283 was published Oct 15, 2024

Vulnerability in the Oracle Service Contracts product of Oracle E-Business Suite (component:... High Unreviewed

CVE-2024-21280 was published Oct 15, 2024

Vulnerability in the Oracle Banking Liquidity Management product of Oracle Financial Services... High Unreviewed

CVE-2024-21284 was published Oct 15, 2024

Vulnerability in the Oracle Incentive Compensation product of Oracle E-Business Suite (component:... High Unreviewed

CVE-2024-21269 was published Oct 15, 2024

Vulnerability in the Oracle Work in Process product of Oracle E-Business Suite (component:... High Unreviewed

CVE-2024-21276 was published Oct 15, 2024

Vulnerability in the Oracle Quoting product of Oracle E-Business Suite (component: User Interface... High Unreviewed

CVE-2024-21275 was published Oct 15, 2024

Vulnerability in the Oracle MES for Process Manufacturing product of Oracle E-Business Suite ... High Unreviewed

CVE-2024-21277 was published Oct 15, 2024

Previous 1 2 3 4 5 6 … 76 77 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,902 advisories