Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,280 advisories

Loading
Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation... Critical Unreviewed
CVE-2023-39405 was published Aug 13, 2023
Vulnerability of input parameters being not strictly verified in the PMS module. Successful... High Unreviewed
CVE-2023-39389 was published Aug 13, 2023
Vulnerability of input parameters being not strictly verified in the PMS module. Successful... High Unreviewed
CVE-2023-39386 was published Aug 13, 2023
Vulnerability of input parameter verification in certain APIs in the window management module.... High Unreviewed
CVE-2023-39390 was published Aug 13, 2023
Vulnerability of input parameter verification in certain APIs in the window management module.... High Unreviewed
CVE-2023-39404 was published Aug 13, 2023
In readFrom of Uri.java, there is a possible bad URI permission grant due to improper input... High Unreviewed
CVE-2023-21272 was published Aug 15, 2023
In multiple functions of DevicePolicyManager.java, there is a possible way to prevent enabling... Moderate Unreviewed
CVE-2023-21284 was published Aug 15, 2023
Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed... High Unreviewed
CVE-2023-4357 was published Aug 15, 2023
Insufficient validation in the IOCTL (Input Output Control) input buffer in AMD Ryzen™... Moderate Unreviewed
CVE-2023-20564 was published Aug 16, 2023
Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD Ryzen™... Moderate Unreviewed
CVE-2023-20560 was published Aug 16, 2023
Woodpecker does not validate webhook before changing any data High
CVE-2023-40034 was published for github.com/woodpecker-ci/woodpecker (Go) Aug 16, 2023
anbraten 6543
IBM WebSphere Application Server Liberty 22.0.0.13 through 23.0.0.7 is vulnerable to a denial of... High Unreviewed
CVE-2023-38737 was published Aug 16, 2023
A vulnerability in the Tomcat implementation for Cisco Unified Contact Center Express (Unified... Moderate Unreviewed
CVE-2023-20232 was published Aug 17, 2023
Apache Airflow Spark Provider Improper Input Validation vulnerability High
CVE-2023-40272 was published for apache-airflow-providers-apache-spark (pip) Aug 17, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation... High Unreviewed
CVE-2023-2914 was published Aug 17, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation... Critical Unreviewed
CVE-2023-2917 was published Aug 17, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation... Critical Unreviewed
CVE-2023-2915 was published Aug 17, 2023
Improper Input Validation in GitHub repository hamza417/inure prior to build88. High Unreviewed
CVE-2023-4435 was published Aug 20, 2023
An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, 1.39.x... Moderate Unreviewed
CVE-2023-36674 was published Aug 20, 2023
Due to improper input validation, a remote attacker could execute arbitrary commands on the... Critical Unreviewed
CVE-2023-25915 was published Aug 21, 2023
A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco NX-OS... High Unreviewed
CVE-2023-20169 was published Aug 23, 2023
A vulnerability in TACACS+ and RADIUS remote authentication for Cisco NX-OS Software could allow... Moderate Unreviewed
CVE-2023-20168 was published Aug 23, 2023
The vulnerability exists in CP-Plus DVR due to an improper input validation within the web-based... Moderate Unreviewed
CVE-2023-3704 was published Aug 24, 2023
The vulnerability exists in CP-Plus NVR due to an improper input handling at the web-based... High Unreviewed
CVE-2023-3705 was published Aug 24, 2023
The sub_451784 function does not validate the parameters entered by the user, resulting in a... High Unreviewed
CVE-2023-40801 was published Aug 25, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database