GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Critical

CVE-2024-28056 was published for @aws-amplify/cli (npm) Apr 15, 2024

Critical Unreviewed

CVE-2024-27207 was published Mar 11, 2024

Critical

CVE-2020-10661 was published for github.com/hashicorp/vault (Go) Jan 30, 2024

Critical

CVE-2023-7080 was published for wrangler (npm) Jan 3, 2024

Critical

CVE-2023-50423 was published for sap-xssec (pip) Dec 13, 2023

Critical

CVE-2023-50424 was published for github.com/sap/cloud-security-client-go (Go) Dec 13, 2023

Critical

CVE-2023-50422 was published for com.sap.cloud.security.xsuaa:spring-xsuaa (Maven) Dec 13, 2023

Critical

GHSA-p99h-pfg6-qrfg was published for sap-xssec (pip) Dec 12, 2023 • withdrawn

Critical

CVE-2023-49583 was published for @sap/xssec (npm) Dec 12, 2023

Critical

GHSA-92cg-ghq6-9587 was published for github.com/sap/cloud-security-client-go (Go) Dec 12, 2023 • withdrawn

ProTip! Advisories are also available from the GraphQL API