Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,179
Erlang
31
GitHub Actions
19
Go
1,982
Maven
5,000+
npm
3,701
NuGet
656
pip
3,323
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

72 advisories

Loading
This issue was addressed through improved state management. This issue is fixed in iOS 17.5 and... Low Unreviewed
CVE-2024-27835 was published May 14, 2024
In JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space... Low Unreviewed
CVE-2024-41829 was published Jul 22, 2024
An issue was discovered in Samsung Mobile Processor, Automotive Processor, and Modem Exynos 9820,... Low Unreviewed
CVE-2023-50804 was published Jun 5, 2024
A vulnerability was found in Emlog Pro 2.3.4. It has been classified as problematic. This affects... Low Unreviewed
CVE-2024-5044 was published May 17, 2024
Broken Authentication vulnerability discovered in OpenText™ iManager 3.2.6.0200. This... Low Unreviewed
CVE-2024-3487 was published May 15, 2024
Improper authentication in GallerySearchProvider of Gallery prior to version 14.5.01.2 allows... Low Unreviewed
CVE-2023-30724 was published Sep 6, 2023
Improper authentication in Phone and Messaging Storage SMR SEP-2023 Release 1 allows attacker to... Low Unreviewed
CVE-2023-30711 was published Sep 6, 2023
Dell BIOS contains an improper authentication vulnerability. A malicious user with physical... Low Unreviewed
CVE-2023-32453 was published Aug 16, 2023
PendingIntent hijacking vulnerability in SemWifiApTimeOutImpl in framework prior to SMR Aug-2023... Low Unreviewed
CVE-2023-30700 was published Aug 10, 2023
A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest... Low Unreviewed
CVE-2023-20867 was published Jun 13, 2023
Improper access control vulnerability in Telephony framework prior to SMR May-2023 Release 1... Low Unreviewed
CVE-2023-21487 was published May 4, 2023
The Operating System hosting the FACSChorus application is configured to allow transmission of... Low Unreviewed
CVE-2023-29062 was published Nov 28, 2023
Denial of service due to unauthenticated API endpoint. The following products are affected:... Low Unreviewed
CVE-2022-45456 was published Apr 26, 2023
Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical... Low Unreviewed
CVE-2022-33720 was published Aug 6, 2022
There is an improper authentication vulnerability in Pandora FMS v764. The application verifies... Low Unreviewed
CVE-2022-43978 was published Jan 28, 2023
Improper access control vulnerability in TelephonyUI prior to SMR Jul-2022 Release 1 allows... Low Unreviewed
CVE-2022-33689 was published Jul 13, 2022
A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura... Low Unreviewed
CVE-2023-23493 was published Feb 27, 2023
The krb5_save_ccname_done function in providers/krb5/krb5_auth.c in System Security Services... Low Unreviewed
CVE-2011-1758 was published May 17, 2022
The Netlink implementation in the Linux kernel before 3.2.30 does not properly handle messages... Low Unreviewed
CVE-2012-3520 was published May 17, 2022
Huawei smartphone OxfordS-AN00A with versions earlier than 10.0.1.152D(C735E152R3P3),versions... Low Unreviewed
CVE-2020-1878 was published May 24, 2022
Improper authentication in One UI Home prior to SMR Mar-2022 Release 1 allows attacker to... Low Unreviewed
CVE-2022-25817 was published Mar 11, 2022
The Restrictions (aka Parental Controls) implementation in Apple iOS before 6 does not properly... Low Unreviewed
CVE-2012-3741 was published May 17, 2022
JGroups diagnostics service in JBoss Enterprise Portal Platform before 5.2.2, SOA Platform before... Low Unreviewed
CVE-2012-2377 was published May 17, 2022
The NTT DOCOMO overseas usage application 2.0.0 through 2.0.4 for Android does not properly... Low Unreviewed
CVE-2013-3659 was published May 17, 2022
The Sterling Order Management APIs in IBM Sterling Multi-Channel Fulfillment Solution 8.0 before... Low Unreviewed
CVE-2013-0578 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database