Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

840 advisories

Loading
Null pointer dereference vulnerability in the image decoding module Impact: Successful... High Unreviewed
CVE-2024-54106 was published Dec 12, 2024
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability High Unreviewed
CVE-2024-49121 was published Dec 12, 2024
Animate versions 23.0.8, 24.0.5 and earlier are affected by a NULL Pointer Dereference... High Unreviewed
CVE-2024-45156 was published Dec 10, 2024
Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a... High Unreviewed
CVE-2024-44856 was published Dec 7, 2024
Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a... High Unreviewed
CVE-2024-44855 was published Dec 7, 2024
Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a... High Unreviewed
CVE-2024-44853 was published Dec 7, 2024
Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a... High Unreviewed
CVE-2024-44854 was published Dec 7, 2024
In OpenBSD 7.4 before errata 006 and OpenBSD 7.3 before errata 020, httpd(8) is vulnerable to a... High Unreviewed
CVE-2024-11148 was published Dec 5, 2024
NULL pointer dereference in the MMS Client in MZ Automation LibIEC1850 before commit... High Unreviewed
CVE-2024-45969 was published Nov 15, 2024
A null pointer dereference in Palo Alto Networks PAN-OS software on PA-800 Series, PA-3200 Series... High Unreviewed
CVE-2024-9472 was published Nov 14, 2024
A null pointer dereference vulnerability in the GlobalProtect gateway in Palo Alto Networks PAN... High Unreviewed
CVE-2024-2550 was published Nov 14, 2024
A null pointer dereference vulnerability in Palo Alto Networks PAN-OS software enables an... High Unreviewed
CVE-2024-2551 was published Nov 14, 2024
A null pointer dereference in Ivanti Connect Secure before version 22.7R2.1 and Ivanti Policy... High Unreviewed
CVE-2024-8495 was published Nov 12, 2024
A null pointer dereference in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated... High Unreviewed
CVE-2024-50317 was published Nov 12, 2024
A null pointer dereference in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated... High Unreviewed
CVE-2024-50318 was published Nov 12, 2024
wasm-micro-runtime (aka WebAssembly Micro Runtime or WAMR) 06df58f is vulnerable to NULL Pointer... High Unreviewed
CVE-2024-27532 was published Nov 9, 2024
A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as problematic. Affected... High Unreviewed
CVE-2024-10750 was published Nov 4, 2024
TP Link MR200 V4 Firmware version 210201 was discovered to contain a null-pointer-dereference in... High Unreviewed
CVE-2024-22733 was published Nov 1, 2024
there is a possible Null Pointer Dereference (modem crash) due to improper input validation. This... High Unreviewed
CVE-2024-44101 was published Oct 25, 2024
A vulnerability in the Internet Key Exchange version 2 (IKEv2) protocol for VPN termination of... High Unreviewed
CVE-2024-20426 was published Oct 23, 2024
A vulnerability in the TLS processing feature of Cisco Firepower Threat Defense (FTD) Software... High Unreviewed
CVE-2024-20339 was published Oct 23, 2024
A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206... High Unreviewed
CVE-2024-10280 was published Oct 23, 2024
A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanche before version 6.4.5... High Unreviewed
CVE-2024-47007 was published Oct 8, 2024
A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service... High Unreviewed
CVE-2024-20436 was published Sep 25, 2024
Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP... High Unreviewed
CVE-2024-39589 was published Sep 18, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database