Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,054 advisories

Loading
Out-of-bounds read vulnerability in the Bluetooth module.Successful exploitation of this... High Unreviewed
CVE-2023-44103 was published Oct 11, 2023
Active Template Library Denial of Service Vulnerability High Unreviewed
CVE-2023-36585 was published Oct 10, 2023
An improper input validation flaw was found in the eBPF subsystem in the Linux kernel. The issue... High Unreviewed
CVE-2023-39191 was published Oct 4, 2023
An improper input validation in UEFI Firmware prior to Firmware update Oct-2023 Release in Galaxy... High Unreviewed
CVE-2023-30738 was published Oct 4, 2023
Improper access control vulnerability in SecSettings prior to SMR Oct-2023 Release 1 allows... High Unreviewed
CVE-2023-30727 was published Oct 4, 2023
Improper input validation vulnerability in Duo prior to SMR Oct-2023 Release 1 allows local... High Unreviewed
CVE-2023-30690 was published Oct 4, 2023
Improper input validation vulnerability in Evaluator prior to SMR Oct-2023 Release 1 allows local... High Unreviewed
CVE-2023-30692 was published Oct 4, 2023
Weak configuration in Automotive while VM is processing a listener request from TEE. High Unreviewed
CVE-2023-22382 was published Oct 3, 2023
Memory Corruption in HLOS while registering for key provisioning notify. High Unreviewed
CVE-2023-24853 was published Oct 3, 2023
Incorrect data input validation vulnerability, which could allow an attacker with access to the... High Unreviewed
CVE-2023-3769 was published Oct 2, 2023
Incorrect data input validation vulnerability, which could allow an attacker with access to the... High Unreviewed
CVE-2023-3768 was published Oct 2, 2023
In wlan firmware, there is a possible firmware assertion due to improper input handling. This... High Unreviewed
CVE-2023-32820 was published Oct 2, 2023
Apache Avro Java SDK vulnerable to Improper Input Validation High
CVE-2023-39410 was published for org.apache.avro:avro (Maven) Sep 29, 2023
sealonohana
Credited to sealonohana
Denial of Service in pipelines affecting all versions of Gitlab EE and CE prior to 16.2.8, 16.3... High Unreviewed
CVE-2023-3917 was published Sep 29, 2023
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote... High Unreviewed
CVE-2023-20231 was published Sep 27, 2023
OpenCart Path Traversal vulnerability High
CVE-2023-2315 was published for opencart/opencart (Composer) Sep 27, 2023
Vulnerability of parameters not being strictly verified in the PMS module. Successful... High Unreviewed
CVE-2023-41300 was published Sep 25, 2023
Command injection vulnerability in the distributed file system module. Successful exploitation of... High Unreviewed
CVE-2023-41303 was published Sep 25, 2023
Denial of Service issue in quinn-proto High
CVE-2023-42805 was published for quinn-proto (Rust) Sep 21, 2023
QUICTester
Credited to QUICTester
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input... High Unreviewed
CVE-2023-31010 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in the REST service, where an attacker may cause... High Unreviewed
CVE-2023-31013 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause... High Unreviewed
CVE-2023-31012 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause... High Unreviewed
CVE-2023-31011 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input... High Unreviewed
CVE-2023-31008 was published Sep 20, 2023
A Denial of Service (Dos) vulnerability in Nozomi Networks Guardian and CMC, due to improper... High Unreviewed
CVE-2023-32649 was published Sep 19, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database