Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

920 advisories

Loading
An issue has been discovered in GitLab EE with Advanced Search affecting all versions from 13.9... Low Unreviewed
CVE-2023-5963 was published Nov 6, 2023
An issue has been discovered in GitLab EE/CE affecting all versions starting before 16.3.6, all... Moderate Unreviewed
CVE-2023-3246 was published Nov 6, 2023
A vulnerability in a logging API in Cisco Firepower Management Center (FMC) Software could allow... High Unreviewed
CVE-2023-20155 was published Nov 1, 2023
A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch... Moderate Unreviewed
CVE-2023-5625 was published Nov 1, 2023
Pfsense CE version 2.6.0 is vulnerable to No rate limit which can lead to an attacker creating... Moderate Unreviewed
CVE-2023-29973 was published Oct 25, 2023
When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request... Moderate Unreviewed
CVE-2023-45802 was published Oct 23, 2023
An issue was discovered in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in... High Unreviewed
CVE-2023-45862 was published Oct 14, 2023
An Allocation of Resources Without Limits or Throttling vulnerability in Juniper Networks Junos... High Unreviewed
CVE-2023-44191 was published Oct 13, 2023
When TCP Verified Accept is enabled on a TCP profile that is configured on a Virtual Server,... High Unreviewed
CVE-2023-40542 was published Oct 10, 2023
Mattermost fails to enforce a limit for the size of the cache entry for OpenGraph data allowing... High Unreviewed
CVE-2023-5330 was published Oct 9, 2023
An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1... High Unreviewed
CVE-2023-45371 was published Oct 9, 2023
RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of... Moderate Unreviewed
CVE-2023-5371 was published Oct 4, 2023
A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate... Moderate Unreviewed
CVE-2023-3153 was published Oct 4, 2023
Allocation of Resources Without Limits or Throttling vulnerability in Hitachi Ops Center Common... High Unreviewed
CVE-2023-3967 was published Oct 3, 2023
In Mosquitto before 2.0.16, excessive memory is allocated based on malicious initial packets that... Moderate Unreviewed
CVE-2023-0809 was published Oct 2, 2023
A vulnerability in Cisco IOS XE Software for Cisco Catalyst 3650 and Catalyst 3850 Series... High Unreviewed
CVE-2023-20033 was published Sep 27, 2023
As noted in the “VTPM.md” file in the eve documentation, “VTPM is a server listening on port... Critical Unreviewed
CVE-2023-43632 was published Sep 21, 2023
** UNSUPPPORTED WHEN ASSIGNED ** Vulnerability in the RCPbind service running on UDP port (111),... High Unreviewed
CVE-2022-47562 was published Sep 20, 2023
When curl retrieves an HTTP response, it stores the incoming headers so that they can be accessed... High Unreviewed
CVE-2023-38039 was published Sep 15, 2023
When calling `JS::CheckRegExpSyntax` a Syntax Error could have been set which would end in... Moderate Unreviewed
CVE-2023-4578 was published Sep 11, 2023
QUIC connections do not set an upper bound on the amount of data buffered when reading post... High Unreviewed
CVE-2023-39322 was published Sep 8, 2023
An improper resource allocation vulnerability exists in the OAS Engine configuration management... Moderate Unreviewed
CVE-2023-34994 was published Sep 5, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.1.5,... High Unreviewed
CVE-2023-4647 was published Sep 1, 2023
An adversary could cause a continuous restart loop to the entire device by sending a large... High Unreviewed
CVE-2023-40710 was published Aug 24, 2023
An adversary could crash the entire device by sending a large quantity of ICMP requests if the... High Unreviewed
CVE-2023-40709 was published Aug 24, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database