Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

914 advisories

Loading
A vulnerability in the SIP processing subsystem of Cisco BroadWorks could allow an... High Unreviewed
CVE-2025-20165 was published Jan 22, 2025
A NULL pointer dereference in the ngap_app::handle_receive routine of OpenAirInterface CN5G AMF ... High Unreviewed
CVE-2024-24442 was published Jan 22, 2025
Belledonne Communications Linphone-Desktop is vulnerable to a NULL Dereference vulnerability,... High Unreviewed
CVE-2025-0430 was published Jan 17, 2025
NULL pointer dereference in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow... High Unreviewed
CVE-2024-48857 was published Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability High Unreviewed
CVE-2025-21285 was published Jan 14, 2025
In raw\TCP.cpp in Matter (aka connectedhomeip or Project CHIP) through 1.4.0.0 before 27ca6ec,... High Unreviewed
CVE-2024-56318 was published Dec 19, 2024
A NULL pointer dereference in D-Link DAP-1513 REVA_FIRMWARE_1.01 allows attackers to cause a... High Unreviewed
CVE-2024-36832 was published Dec 17, 2024
Null pointer dereference vulnerability in the image decoding module Impact: Successful... High Unreviewed
CVE-2024-54106 was published Dec 12, 2024
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability High Unreviewed
CVE-2024-49121 was published Dec 12, 2024
Animate versions 23.0.8, 24.0.5 and earlier are affected by a NULL Pointer Dereference... High Unreviewed
CVE-2024-45156 was published Dec 10, 2024
Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a... High Unreviewed
CVE-2024-44853 was published Dec 7, 2024
Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a... High Unreviewed
CVE-2024-44854 was published Dec 7, 2024
Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a... High Unreviewed
CVE-2024-44856 was published Dec 7, 2024
Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a... High Unreviewed
CVE-2024-44855 was published Dec 7, 2024
In OpenBSD 7.4 before errata 006 and OpenBSD 7.3 before errata 020, httpd(8) is vulnerable to a... High Unreviewed
CVE-2024-11148 was published Dec 5, 2024
Kubernetes Nil pointer dereference in KCM after v1 HPA patch request High
CVE-2024-0793 was published for k8s.io/kubernetes (Go) Nov 17, 2024
NULL pointer dereference in the MMS Client in MZ Automation LibIEC1850 before commit... High Unreviewed
CVE-2024-45969 was published Nov 15, 2024
A null pointer dereference in Palo Alto Networks PAN-OS software on PA-800 Series, PA-3200 Series... High Unreviewed
CVE-2024-9472 was published Nov 14, 2024
A null pointer dereference vulnerability in the GlobalProtect gateway in Palo Alto Networks PAN... High Unreviewed
CVE-2024-2550 was published Nov 14, 2024
A null pointer dereference vulnerability in Palo Alto Networks PAN-OS software enables an... High Unreviewed
CVE-2024-2551 was published Nov 14, 2024
In multiple locations, there is a possible permissions bypass due to a missing null check. This... High Unreviewed
CVE-2024-34719 was published Nov 13, 2024
A null pointer dereference in Ivanti Connect Secure before version 22.7R2.1 and Ivanti Policy... High Unreviewed
CVE-2024-8495 was published Nov 12, 2024
A null pointer dereference in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated... High Unreviewed
CVE-2024-50317 was published Nov 12, 2024
A null pointer dereference in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated... High Unreviewed
CVE-2024-50318 was published Nov 12, 2024
wasm-micro-runtime (aka WebAssembly Micro Runtime or WAMR) 06df58f is vulnerable to NULL Pointer... High Unreviewed
CVE-2024-27532 was published Nov 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database