Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

463 advisories

Loading
Buffer Overflow vulnerability in baramundi software GmbH EMM Agent 23.1.50 and before allows an... Moderate Unreviewed
CVE-2023-37605 was published Oct 2, 2023
When IPSec is configured on a Virtual Server, undisclosed traffic can cause TMM to terminate.  ... High Unreviewed
CVE-2023-41085 was published Oct 10, 2023
An Improper Handling of Exceptional Conditions vulnerability in AS PATH processing of Juniper... High Unreviewed
CVE-2023-44186 was published Oct 11, 2023
XNSoft Nconvert 7.136 has an Exception Handler Chain Corrupted via a crafted image file.... High Unreviewed
CVE-2023-43251 was published Oct 19, 2023
Directus crashes on invalid WebSocket message High
CVE-2023-45820 was published for directus (npm) Oct 19, 2023
nles
Credited to nles
Dell PowerScale OneFS 8.2.x, 9.0.0.x-9.5.0.x contains an improper handling of insufficient... Moderate Unreviewed
CVE-2023-43087 was published Nov 2, 2023
bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a ... Critical Unreviewed
CVE-2023-38406 was published Nov 6, 2023
A flaw was found in KVM. An improper check in svm_set_x2apic_msr_interception() may allow direct... Moderate Unreviewed
CVE-2023-5090 was published Nov 6, 2023
Calico Typha denial of service vulnerability High
CVE-2023-41378 was published for github.com/projectcalico/calico (Go) Nov 6, 2023
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially... High Unreviewed
CVE-2023-22292 was published Nov 14, 2023
Elasticsearch Improper Handling of Exceptional Conditions Moderate
CVE-2023-46673 was published for org.elasticsearch:elasticsearch (Maven) Nov 22, 2023
In Perl before 5.38.2, S_parse_uniprop_string in regcomp.c can write to unallocated space because... Critical Unreviewed
CVE-2023-47100 was published Dec 3, 2023
Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows... Moderate Unreviewed
CVE-2023-42559 was published Dec 5, 2023
Improper handling of insufficient permissions or privileges vulnerability in Samsung Data Store... Moderate Unreviewed
CVE-2023-42578 was published Dec 5, 2023
Microweber missing standardized error handling mechanism Low
CVE-2023-6599 was published for microweber/microweber (Composer) Dec 8, 2023
There is a denial of service vulnerability in some ZTE mobile internet products. Due to... Moderate Unreviewed
CVE-2023-25644 was published Dec 14, 2023
An uncaught exception issue discovered in Softing OPC UA C++ SDK before 6.30 for Windows... High Unreviewed
CVE-2023-41151 was published Dec 14, 2023
Unauthenticated Denial of Service in the octokit/webhooks library High
CVE-2023-50728 was published for @octokit/app (npm) Dec 16, 2023
TypedArrays can be fallible and lacked proper exception handling. This could lead to abuse in... High Unreviewed
CVE-2023-6866 was published Dec 19, 2023
An issue was discovered in open5gs v2.6.6. InitialUEMessage, Registration request sent at a... Moderate Unreviewed
CVE-2023-50019 was published Jan 3, 2024
Duplicate Advisory: Improper Handling of Exceptional Conditions in Newtonsoft.Json High
GHSA-8rfx-6mr3-5jh3 was published for Newtonsoft.Json (NuGet) Jan 3, 2024 withdrawn
Windows Hyper-V Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-20699 was published Jan 9, 2024
An Improper Handling of Exceptional Conditions vulnerability in BGP session processing of... Moderate Unreviewed
CVE-2024-21585 was published Jan 12, 2024
An Improper Handling of Exceptional Conditions vulnerability in the broadband edge subscriber... Moderate Unreviewed
CVE-2024-21587 was published Jan 12, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in Juniper DHCP Daemon ... Moderate Unreviewed
CVE-2023-36842 was published Jan 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database