Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

920 advisories

Loading
An issue was discovered in ebankIT before 7. A Denial-of-Service attack is possible through the... High Unreviewed
CVE-2023-30455 was published Apr 28, 2023
Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows a denial of service (worker crash... High Unreviewed
CVE-2023-28882 was published Apr 28, 2023
IBM Counter Fraud Management for Safer Payments 6.1.0.00, 6.2.0.00, 6.3.0.00 through 6.3.1.03, 6... High Unreviewed
CVE-2023-27556 was published Apr 28, 2023
Sengled Dimmer Switch V0.0.9 contains a denial of service (DOS) vulnerability, which allows a... High Unreviewed
CVE-2023-29779 was published Apr 25, 2023
Jerryscript commit 1a2c047 was discovered to contain a segmentation violation via the component... Moderate Unreviewed
CVE-2023-30408 was published Apr 25, 2023
Jerryscript commit 1a2c047 was discovered to contain a segmentation violation via the component... Moderate Unreviewed
CVE-2023-30406 was published Apr 25, 2023
Ribose RNP before 0.16.3 may hang when the input is malformed. Moderate Unreviewed
CVE-2023-29479 was published Apr 24, 2023
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_ffi_cb_free at src... Moderate Unreviewed
CVE-2023-29570 was published Apr 24, 2023
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp42aac component. Moderate Unreviewed
CVE-2023-29575 was published Apr 21, 2023
User-controlled operations could have allowed Denial of Service in M-Files Server before 23.4... High Unreviewed
CVE-2023-0383 was published Apr 20, 2023
An Improperly Controlled Sequential Memory Allocation vulnerability in the Juniper Networks Deep... Moderate Unreviewed
CVE-2023-28968 was published Apr 18, 2023
An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before... High Unreviewed
CVE-2018-15472 was published Apr 16, 2023
An issue found in WHOv.1.0.28, v.1.0.30, v.1.0.32 allows an attacker to cause a denial of service... High Unreviewed
CVE-2023-27653 was published Apr 14, 2023
An issue found in POWERAMP 925-bundle-play and Poweramp 954-uni allows a remote attacker to cause... High Unreviewed
CVE-2023-27643 was published Apr 14, 2023
TiKV 6.1.2 allows remote attackers to cause a denial of service (fatal error, with RpcStatus... High Unreviewed
CVE-2023-30636 was published Apr 14, 2023
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp4info component. Moderate Unreviewed
CVE-2023-29573 was published Apr 13, 2023
Aten PE8108 2.4.232 is vulnerable to denial of service (DOS). Moderate Unreviewed
CVE-2023-25414 was published Apr 11, 2023
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions), SIMATIC CP 1243-1 ... High Unreviewed
CVE-2022-43768 was published Apr 11, 2023
An issue found in DUALSPACE Super Secuirty v.2.3.7 allows an attacker to cause a denial of... High Unreviewed
CVE-2023-27191 was published Apr 11, 2023
Multipart form parsing can consume large amounts of CPU and memory when processing form inputs... High Unreviewed
CVE-2023-24536 was published Apr 6, 2023
User-controlled operations could have allowed Denial of Service in M-Files Server before 23.4... Moderate Unreviewed
CVE-2023-0382 was published Apr 5, 2023
Some products have the double fetch vulnerability. Successful exploitation of this vulnerability... High Unreviewed
CVE-2022-48357 was published Mar 28, 2023
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows... Moderate Unreviewed
CVE-2023-1544 was published Mar 23, 2023
A vulnerability in the HTTP-based client profiling feature of Cisco IOS XE Software for Wireless... Moderate Unreviewed
CVE-2023-20067 was published Mar 23, 2023
x86/HVM pinned cache attributes mis-handling T[his CNA information record relates to multiple... High Unreviewed
CVE-2022-42333 was published Mar 21, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database