GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,637
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,107
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,130

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,094 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Mattermost fails to properly validate a RegExp built off the server URL path, allowing an... Low Unreviewed

CVE-2023-5876 was published Nov 2, 2023

A vulnerability in a logging API in Cisco Firepower Management Center (FMC) Software could allow... High Unreviewed

CVE-2023-20155 was published Nov 1, 2023

A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch... Moderate Unreviewed

CVE-2023-5625 was published Nov 1, 2023

Uncontrolled resource consumption vulnerability in Cybozu Remote Service 4.1.0 to 4.1.1 allows a... Moderate Unreviewed

CVE-2023-46278 was published Nov 1, 2023

An issue in TP-Link Tapo C100 v1.1.15 Build 211130 Rel.15378n(4555) and before allows attackers... Moderate Unreviewed

CVE-2023-39610 was published Oct 31, 2023

In certain conditions for Calico Typha (v3.26.2, v3.25.1 and below), and Calico Enterprise Typha ... Unknown Unreviewed

CVE-2023-41377 was published Oct 31, 2023

An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers to cause a denial of service... High Unreviewed

CVE-2023-45955 was published Oct 31, 2023

Artifex Software jbig2dec v0.20 was discovered to contain a SEGV vulnerability via jbig2_error at... Moderate Unreviewed

CVE-2023-46361 was published Oct 31, 2023

An issue discovered in Govee LED Strip v3.00.42 allows attackers to cause a denial of service via... High Unreviewed

CVE-2023-45956 was published Oct 31, 2023

In Minikin, there is a possible way to trigger ANR by showing a malicious message due to resource... High Unreviewed

CVE-2023-21339 was published Oct 30, 2023

An inconsistent user interface issue was addressed with improved state management. This issue is... Moderate Unreviewed

CVE-2023-40408 was published Oct 25, 2023

Drivers are not always robust to extremely large draw calls and in some cases this scenario could... High Unreviewed

CVE-2023-5724 was published Oct 25, 2023

PingFederate Administrative Console dependency contains a weakness where console becomes... High Unreviewed

CVE-2023-39219 was published Oct 25, 2023

IBM TXSeries for Multiplatforms, 8.1, 8.2, and 9.1, CICS TX Standard CICS TX Advanced 10.1 and 11... Moderate Unreviewed

CVE-2023-42031 was published Oct 25, 2023

A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior... Moderate Unreviewed

CVE-2022-3698 was published Oct 25, 2023

A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior... Moderate Unreviewed

CVE-2022-0353 was published Oct 25, 2023

An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block... High Unreviewed

CVE-2023-43622 was published Oct 23, 2023

When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request... Moderate Unreviewed

CVE-2023-45802 was published Oct 23, 2023

Mattermost Mobile fails to limit the maximum number of Markdown elements in a post allowing an... Moderate Unreviewed

CVE-2023-5522 was published Oct 17, 2023

IBM Security Verify Privilege On-Premises 11.5 could allow a privileged user to cause by using a... Moderate Unreviewed

CVE-2022-43893 was published Oct 17, 2023

Denial of Service in GitHub repository gpac/gpac prior to 2.3.0-DEV. Moderate Unreviewed

CVE-2023-5595 was published Oct 16, 2023

IBM Security Verify Access OIDC Provider could allow a remote user to cause a denial of service... High Unreviewed

CVE-2022-43740 was published Oct 14, 2023

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... High Unreviewed

CVE-2023-36841 was published Oct 13, 2023

ONTAP 9 versions prior to 9.8P19, 9.9.1P16, 9.10.1P12, 9.11.1P8, 9.12.1P2 and 9.13.1 are... High Unreviewed

CVE-2023-27314 was published Oct 12, 2023

A denial-of-service vulnerability exists in the vpnserver ConnectionAccept() functionality of... High Unreviewed

CVE-2023-25774 was published Oct 12, 2023

Previous 1…30…84 Next

Previous 1 2 … 28 29 30 31 32 … 83 84 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,094 advisories