Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,383 advisories

Loading
SAP BusinessObjects Business Intelligence Platform (Promotion Management) - versions 420, 430,... Critical Unreviewed
CVE-2023-40622 was published Sep 13, 2023
An incorrect permission check in Qualys Container Scanning Connector Plugin 1.6.2.6 and earlier... Moderate Unreviewed
CVE-2023-4777 was published Sep 8, 2023
Wacom Drivers for Windows Incorrect Permission Assignment Local Privilege Escalation... High Unreviewed
CVE-2023-32162 was published Sep 6, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 16.1 before 16.1.5... High Unreviewed
CVE-2023-3915 was published Sep 1, 2023
Insecure Inherited Permissions vulnerability in Schweitzer Engineering Laboratories SEL-5033... Moderate Unreviewed
CVE-2023-34391 was published Aug 31, 2023
In PHPJabbers Car Rental Script 3.0, lack of verification when changing an email address and/or... High Unreviewed
CVE-2023-40754 was published Aug 28, 2023
A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6... Moderate Unreviewed
CVE-2023-4228 was published Aug 24, 2023
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to... Moderate Unreviewed
CVE-2023-20234 was published Aug 23, 2023
A vulnerability in the restricted security domain implementation of Cisco Application Policy... Moderate Unreviewed
CVE-2023-20230 was published Aug 23, 2023
A vulnerability in the Simple Network Management Protocol (SNMP) service of Cisco FXOS Software... Moderate Unreviewed
CVE-2023-20200 was published Aug 23, 2023
Active Support Possibly Discloses Locally Encrypted Files Moderate
CVE-2023-38037 was published for activesupport (RubyGems) Aug 23, 2023
A vulnerability, which was classified as critical, was found in MicroWorld eScan Anti-Virus 7.0... High Unreviewed
CVE-2023-4383 was published Aug 16, 2023
Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file High Unreviewed
CVE-2023-4332 was published Aug 15, 2023
Insecure inherited permissions in some Intel(R) oneMKL software before version 2022.0 may allow... High Unreviewed
CVE-2023-28658 was published Aug 11, 2023
Insecure permissions in the configuration directory (/conf/) of OPNsense before 23.7 allow... Critical Unreviewed
CVE-2023-39004 was published Aug 9, 2023
Insecure permissions exist for configd.socket in OPNsense before 23.7. High Unreviewed
CVE-2023-39005 was published Aug 9, 2023
OPNsense before 23.7 was discovered to contain insecure permissions in the directory /tmp. High Unreviewed
CVE-2023-39003 was published Aug 9, 2023
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). Affected... High Unreviewed
CVE-2022-39062 was published Aug 8, 2023
An issue in the delete function in the ActModelController class of jeesite v1.2.6 allows... Moderate Unreviewed
CVE-2023-38991 was published Aug 4, 2023
A vulnerability in the privilege management functionality of all Cisco BroadWorks server types... High Unreviewed
CVE-2023-20216 was published Aug 4, 2023
Cargo not respecting umask when extracting crate archives High
CVE-2023-38497 was published for cargo (Rust) Aug 3, 2023
addisoncrump pietroalbini
weihanglo ehuss cuviper Manishearth
Credited to addisoncrump, pietroalbini, weihanglo, ehuss, cuviper, and Manishearth
A vulnerability exists by allowing low-privileged users to read and update the data in various... High Unreviewed
CVE-2023-3322 was published Jul 24, 2023
Local privilege escalation in Check Point Endpoint Security Client (version E87.30) via crafted... High Unreviewed
CVE-2023-28133 was published Jul 23, 2023
When creating a journal entry template in SAP S/4HANA (Manage Journal Entry Template) - versions... High Unreviewed
CVE-2023-35870 was published Jul 11, 2023
SAP SQL Anywhere - version 17.0, allows an attacker to prevent legitimate users from accessing... High Unreviewed
CVE-2023-33990 was published Jul 11, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database