Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,814
Erlang
36
GitHub Actions
32
Go
2,399
Maven
5,000+
npm
4,040
NuGet
722
pip
3,829
Pub
12
RubyGems
932
Rust
1,002
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

58 advisories

Loading
An improper access control was identified in the Identity Security Cloud (ISC) message server API... Moderate Unreviewed
CVE-2024-3317 was published May 15, 2024
A key used in logging.json does not follow the least privilege principle by default and is... Moderate Unreviewed
CVE-2024-3185 was published Apr 23, 2024
A vulnerability was reported in a system recovery bootloader that was part of the Lenovo... Moderate Unreviewed
CVE-2024-23593 was published Apr 15, 2024
In SecurityCommand message after as security has been actived., there is a possible improper... Moderate Unreviewed
CVE-2023-52343 was published Apr 8, 2024
Improper input validation in some Zoom clients may allow an authenticated user to conduct a... Moderate Unreviewed
CVE-2024-24690 was published Feb 14, 2024
A vulnerability exists in the input validation of the GOOSE messages where out of range values... Moderate Unreviewed
CVE-2023-4518 was published Dec 1, 2023
An Improper Validation of Specified Quantity in Input vulnerability in the Layer-2 control... Moderate Unreviewed
CVE-2023-36839 was published Oct 13, 2023
A vulnerability was found in SourceCodester Card Holder Management System 1.0 and classified as... Moderate Unreviewed
CVE-2023-4439 was published Aug 21, 2023
In m4u, there is a possible out of bounds write due to improper input validation. This could lead... Moderate Unreviewed
CVE-2023-20722 was published May 16, 2023
In several functions of PhoneAccountRegistrar.java, there is a possible way to prevent an access... Moderate Unreviewed
CVE-2023-21111 was published May 16, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20705 was published May 16, 2023
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20707 was published May 16, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20704 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20708 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20709 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20710 was published May 16, 2023
Multiple validation issues were addressed with improved input sanitization. This issue is fixed... Moderate Unreviewed
CVE-2023-27961 was published May 8, 2023
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS... Moderate Unreviewed
CVE-2023-27941 was published May 8, 2023
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer... Moderate Unreviewed
CVE-2023-0194 was published Apr 1, 2023
A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7... Moderate Unreviewed
CVE-2022-3411 was published Feb 14, 2023
An Unchecked Input for Loop Condition vulnerability in a NAT library of Juniper Networks Junos OS... Moderate Unreviewed
CVE-2023-22409 was published Jan 13, 2023
OX App Suite through 7.10.6 has Uncontrolled Resource Consumption via a large location request... Moderate Unreviewed
CVE-2022-37311 was published Dec 26, 2022
OX App Suite through 7.10.6 has Uncontrolled Resource Consumption via a large request body... Moderate Unreviewed
CVE-2022-37312 was published Dec 26, 2022
In findAllDeAccounts of AccountsDb.java, there is a possible denial of service due to resource... Moderate Unreviewed
CVE-2021-0934 was published Dec 13, 2022
Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA... Moderate Unreviewed
CVE-2022-20687 was published Dec 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database