Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

45 advisories

Loading
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Low Unreviewed
CVE-2024-21208 was published Oct 15, 2024
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are... Low Unreviewed
CVE-2024-21251 was published Oct 15, 2024
Vulnerability in Oracle Java SE (component: Hotspot). Supported versions that are affected are... Low Unreviewed
CVE-2024-21210 was published Oct 15, 2024
i2p before 2.3.0 (Java) allows de-anonymizing the public IPv4 and IPv6 addresses of i2p hidden... Low Unreviewed
CVE-2023-36325 was published Oct 9, 2024
A vulnerability, which was classified as problematic, was found in spa-cartcms 1.9.0.6. Affected... Low Unreviewed
CVE-2024-6129 was published Jun 18, 2024
A vulnerability was found in nasirkhan Laravel Starter up to 11.8.0. It has been rated as... Low Unreviewed
CVE-2024-6056 was published Jun 17, 2024
IBM Db2 for i 7.2, 7.3, 7.4, and 7.5 supplies user defined table function is vulnerable to user... Low Unreviewed
CVE-2024-31870 was published Jun 15, 2024
In Window Manager, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2023-21348 was published Oct 30, 2023
In the Device Idle Controller, there is a possible way to determine whether an app is installed,... Low Unreviewed
CVE-2023-21346 was published Oct 30, 2023
In Game Manager Service, there is a possible way to determine whether an app is installed,... Low Unreviewed
CVE-2023-21345 was published Oct 30, 2023
In Package Manager, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2023-21349 was published Oct 30, 2023
This issue was addressed by restricting options offered on a locked device. This issue is fixed... Low Unreviewed
CVE-2022-46724 was published Aug 15, 2023
lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer... Low Unreviewed
CVE-2022-47952 was published Jan 1, 2023
In registerLocalOnlyHotspotSoftApCallback of WifiManager.java, there is a possible way to... Low Unreviewed
CVE-2022-20535 was published Dec 21, 2022
In revokeOwnPermissionsOnKill of PermissionManager.java, there is a possible way to determine... Low Unreviewed
CVE-2022-20559 was published Dec 21, 2022
In placeCall of TelecomManager.java, there is a possible way to determine whether an app is... Low Unreviewed
CVE-2022-20531 was published Dec 20, 2022
In ContentResolver, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2022-20316 was published Aug 13, 2022
In AlarmManagerService, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2022-20307 was published Aug 13, 2022
In PackageInstaller, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2022-20309 was published Aug 13, 2022
In PackageInstaller, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2022-20318 was published Aug 13, 2022
In ActivityManager, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2022-20320 was published Aug 13, 2022
In PackageManager, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2022-20252 was published Aug 12, 2022
In LocaleManager, there is a possible way to determine whether an app is installed, without query... Low Unreviewed
CVE-2022-20251 was published Aug 12, 2022
In LocaleManager, there is a possible way to determine whether an app is installed, without query... Low Unreviewed
CVE-2022-20249 was published Aug 12, 2022
The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source... Low Unreviewed
CVE-2022-32296 was published Jun 6, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database