Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

305,616 advisories

Loading
bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream... High Unreviewed
CVE-2023-38407 was published Nov 6, 2023
A privilege escalation vulnerability exists in the experimental policy mechanism in all active... High Unreviewed
CVE-2023-32559 was published Aug 24, 2023
link_to_local_path in ebooks/conversion/plugins/html_input.py in calibre before 6.19.0 can, by... High Unreviewed
CVE-2023-46303 was published Oct 22, 2023
An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI... High Unreviewed
CVE-2023-46752 was published Oct 26, 2023
Cross Site Scripting (XSS) vulnerability in Cacti 1.2.21 via crafted POST request to graphs_new.php. Moderate Unreviewed
CVE-2022-41444 was published Aug 22, 2023
An issue was discovered IW44EncodeCodec.cpp in djvulibre 3.5.28 in allows attackers to cause a... Moderate Unreviewed
CVE-2021-46312 was published Aug 22, 2023
An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur for a crafted BGP... High Unreviewed
CVE-2023-46753 was published Oct 26, 2023
Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper... Critical Unreviewed
CVE-2023-4344 was published Aug 15, 2023
An issue was discovered IW44Image.cpp in djvulibre 3.5.28 in allows attackers to cause a denial... Moderate Unreviewed
CVE-2021-46310 was published Aug 22, 2023
Broadcom RAID Controller web interface is vulnerable due to exposure of sensitive password... High Unreviewed
CVE-2023-4343 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP... Critical Unreviewed
CVE-2023-4342 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable to exposure of private keys used for CIM... High Unreviewed
CVE-2023-4339 was published Aug 15, 2023
Broadcom RAID Controller is vulnerable to Privilege escalation by taking advantage of the Session... Critical Unreviewed
CVE-2023-4340 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration... High Unreviewed
CVE-2023-4326 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP... Critical Unreviewed
CVE-2023-4329 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys... Moderate Unreviewed
CVE-2023-4328 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys... Moderate Unreviewed
CVE-2023-4333 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file High Unreviewed
CVE-2023-4332 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP... Critical Unreviewed
CVE-2023-4338 was published Aug 15, 2023
Broadcom RAID Controller is vulnerable to Privilege escalation to root due to creation of... Critical Unreviewed
CVE-2023-4341 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable to improper session handling of managed... Critical Unreviewed
CVE-2023-4337 was published Aug 15, 2023
Broadcom RAID Controller Web server (nginx) is serving private files without any authentication High Unreviewed
CVE-2023-4334 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable to improper session management of active... Critical Unreviewed
CVE-2023-4323 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to... Moderate Unreviewed
CVE-2023-4345 was published Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP... Critical Unreviewed
CVE-2023-4324 was published Aug 15, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database