Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,094 advisories

Loading
Certain WithSecure products allow a remote crash of a scanning engine via processing of an import... High Unreviewed
CVE-2023-42522 was published Sep 18, 2023
Certain WithSecure products allow a remote crash of a scanning engine via decompression of... High Unreviewed
CVE-2023-42526 was published Sep 18, 2023
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted... High Unreviewed
CVE-2023-42520 was published Sep 18, 2023
Buffer Overflow vulnerability in Control de Ciber version 1.650, in the printing function.... High Unreviewed
CVE-2022-48475 was published Sep 15, 2023
Control de Ciber, in its 1.650 version, is affected by a Denial of Service condition through the... High Unreviewed
CVE-2022-48474 was published Sep 15, 2023
Cyber Control, in its 1.650 version, is affected by a vulnerability in the generation on the... High Unreviewed
CVE-2022-4896 was published Sep 15, 2023
A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue... Moderate Unreviewed
CVE-2023-32665 was published Sep 14, 2023
A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to... High Unreviewed
CVE-2023-29499 was published Sep 14, 2023
A flaw was found in GLib. GVariant deserialization is vulnerable to a slowdown issue where a... Moderate Unreviewed
CVE-2023-32611 was published Sep 14, 2023
A flaw was found in glib, where the gvariant deserialization code is vulnerable to a denial of... High Unreviewed
CVE-2023-32636 was published Sep 14, 2023
DHCP Server Service Denial of Service Vulnerability High Unreviewed
CVE-2023-38162 was published Sep 12, 2023
Windows TCP/IP Denial of Service Vulnerability High Unreviewed
CVE-2023-38149 was published Sep 12, 2023
Shenzhen Hichip Vision Technology IP Camera Firmware V11.4.8.1.1-20170926 has a denial of service... High Unreviewed
CVE-2022-23382 was published Sep 11, 2023
An issue was discovered in Qubo Smart Plug 10A version HSP02_01_01_14_SYSTEM-10A, allows... High Unreviewed
CVE-2023-36161 was published Sep 11, 2023
Processing an incomplete post-handshake message for a QUIC connection can cause a panic. High Unreviewed
CVE-2023-39321 was published Sep 8, 2023
QUIC connections do not set an upper bound on the amount of data buffered when reading post... High Unreviewed
CVE-2023-39322 was published Sep 8, 2023
A denial-of-service issue was addressed with improved input validation. This issue is fixed in... Moderate Unreviewed
CVE-2023-28188 was published Sep 6, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.1.5,... High Unreviewed
CVE-2023-4647 was published Sep 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5,... Moderate Unreviewed
CVE-2023-3210 was published Sep 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5,... Moderate Unreviewed
CVE-2023-3205 was published Sep 1, 2023
Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager ... Moderate Unreviewed
CVE-2023-41739 was published Aug 31, 2023
A segmentation fault can occur in Brocade Fabric OS after Brocade Fabric OS v9.0 and before... Moderate Unreviewed
CVE-2023-4162 was published Aug 31, 2023
Array AG OS before 9.4.0.499 allows denial of service: remote attackers can cause system service... High Unreviewed
CVE-2023-41121 was published Aug 26, 2023
AdGuard DNS before 2.2 allows remote attackers to cause a denial of service via malformed UDP... High Unreviewed
CVE-2023-41173 was published Aug 25, 2023
A remote unprivileged attacker can sent multiple packages to the LMS5xx to disrupt its... High Unreviewed
CVE-2023-4418 was published Aug 24, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database