Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,055 advisories

Loading
A Denial of Service (Dos) vulnerability in Nozomi Networks Guardian and CMC, due to improper... High Unreviewed
CVE-2023-32649 was published Sep 19, 2023
Improper input validation in Zoom Desktop Client for Linux before version 5.15.10 may allow an... High Unreviewed
CVE-2023-39208 was published Sep 12, 2023
A validation issue was addressed with improved logic. This issue is fixed in watchOS 9.6.2, iOS... High Unreviewed
CVE-2023-41061 was published Sep 7, 2023
Improper input validation in Settings Suggestions prior to SMR Sep-2023 Release 1 allows... High Unreviewed
CVE-2023-30712 was published Sep 6, 2023
Improper input validation vulnerability in Knox AI prior to SMR Sep-2023 Release 1 allows local... High Unreviewed
CVE-2023-30710 was published Sep 6, 2023
Improper input validation vulnerability in FileProviderStatusReceiver in Samsung Keyboard prior... High Unreviewed
CVE-2023-30707 was published Sep 6, 2023
Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows administrative users to escalate... High Unreviewed
CVE-2015-2202 was published Sep 5, 2023
In NIA0 algorithm in Security Mode Command, there is a possible missing verification incorrect... High Unreviewed
CVE-2023-33914 was published Sep 4, 2023
usememos/memos vulnerable to improper input validation High
CVE-2023-4698 was published for github.com/usememos/memos (Go) Sep 1, 2023
An Improper Input Validation vulnerability in the Routing Protocol Daemon (rpd) of Juniper... High Unreviewed
CVE-2023-4481 was published Sep 1, 2023
Remote command execution due to improper input validation. The following products are affected:... High Unreviewed
CVE-2023-41748 was published Aug 31, 2023
Remote command execution due to improper input validation. The following products are affected:... High Unreviewed
CVE-2023-41746 was published Aug 31, 2023
Filename spoofing in archive High
CVE-2023-39137 was published for archive (Pub) Aug 31, 2023
kj415j45
Credited to kj415j45
ASQ in Stormshield Network Security (SNS) 4.3.15 before 4.3.16 and 4.6.x before 4.6.3 allows a... High Unreviewed
CVE-2023-26095 was published Aug 28, 2023
Airflow Sqoop Provider RCE Vulnerability High
CVE-2023-27604 was published for apache-airflow-providers-apache-sqoop (pip) Aug 28, 2023
In Tenda AC23 v16.03.07.45_cn, the formSetIPv6status and formGetWanParameter functions do not... High Unreviewed
CVE-2023-40798 was published Aug 25, 2023
In Tenda AC23 v16.03.07.45_cn, the sub_4781A4 function does not validate the parameters entered... High Unreviewed
CVE-2023-40797 was published Aug 25, 2023
The sub_451784 function does not validate the parameters entered by the user, resulting in a... High Unreviewed
CVE-2023-40801 was published Aug 25, 2023
The compare_parentcontrol_time function does not authenticate user input parameters, resulting in... High Unreviewed
CVE-2023-40800 was published Aug 25, 2023
The vulnerability exists in CP-Plus NVR due to an improper input handling at the web-based... High Unreviewed
CVE-2023-3705 was published Aug 24, 2023
A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco NX-OS... High Unreviewed
CVE-2023-20169 was published Aug 23, 2023
Improper Input Validation in GitHub repository hamza417/inure prior to build88. High Unreviewed
CVE-2023-4435 was published Aug 20, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation... High Unreviewed
CVE-2023-2914 was published Aug 17, 2023
Apache Airflow Spark Provider Improper Input Validation vulnerability High
CVE-2023-40272 was published for apache-airflow-providers-apache-spark (pip) Aug 17, 2023
IBM WebSphere Application Server Liberty 22.0.0.13 through 23.0.0.7 is vulnerable to a denial of... High Unreviewed
CVE-2023-38737 was published Aug 16, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database