GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,055
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,605
NuGet
638
pip
3,208
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+
400 advisories
Filter by severity
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially...
High
Unreviewed
CVE-2023-22292
was published
Nov 14, 2023
Calico Typha denial of service vulnerability
High
CVE-2023-41378
was published
for
github.com/projectcalico/calico
(Go)
Nov 6, 2023
A flaw was found in KVM. An improper check in svm_set_x2apic_msr_interception() may allow direct...
Moderate
Unreviewed
CVE-2023-5090
was published
Nov 6, 2023
bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a ...
Critical
Unreviewed
CVE-2023-38406
was published
Nov 6, 2023
Dell PowerScale OneFS 8.2.x, 9.0.0.x-9.5.0.x contains an improper handling of insufficient...
Moderate
Unreviewed
CVE-2023-43087
was published
Nov 2, 2023
Directus crashes on invalid WebSocket message
High
CVE-2023-45820
was published
for
directus
(npm)
Oct 19, 2023
XNSoft Nconvert 7.136 has an Exception Handler Chain Corrupted via a crafted image file....
High
Unreviewed
CVE-2023-43251
was published
Oct 19, 2023
An Improper Handling of Exceptional Conditions vulnerability in AS PATH processing of Juniper...
High
Unreviewed
CVE-2023-44186
was published
Oct 11, 2023
When IPSec is configured on a Virtual Server, undisclosed traffic can cause TMM to terminate.
...
High
Unreviewed
CVE-2023-41085
was published
Oct 10, 2023
Buffer Overflow vulnerability in baramundi software GmbH EMM Agent 23.1.50 and before allows an...
Moderate
Unreviewed
CVE-2023-37605
was published
Oct 2, 2023
VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding.
High
Unreviewed
CVE-2023-44488
was published
Sep 30, 2023
Specific Cilium configurations vulnerable to DoS via Kubernetes annotations
Low
CVE-2023-41332
was published
for
github.com/cilium/cilium
(Go)
Sep 27, 2023
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows...
Moderate
Unreviewed
CVE-2023-3280
was published
Sep 13, 2023
A lack of custom error pages vulnerability [CWE-756] in FortiPresence versions 1.2.0 through 1.2...
Moderate
Unreviewed
CVE-2023-27998
was published
Sep 13, 2023
Apollo Router Unnamed "Subscription" operation results in Denial-of-Service
Moderate
CVE-2023-41317
was published
for
apollo-router
(Rust)
Sep 7, 2023
A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine (ISE)...
High
Unreviewed
CVE-2023-20243
was published
Sep 6, 2023
Improper Handling of Exceptional Conditions vulnerability in Daurnimator HTTP Library for Lua...
High
Unreviewed
CVE-2023-4540
was published
Sep 5, 2023
An Improper Handling of Unicode Encoding vulnerability in the Schweitzer Engineering...
Moderate
Unreviewed
CVE-2023-31169
was published
Aug 31, 2023
Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola...
High
Unreviewed
CVE-2023-23774
was published
Aug 29, 2023
A lack of exception handling in the Renault Easy Link Multimedia System Software Version...
Moderate
Unreviewed
CVE-2023-39801
was published
Aug 24, 2023
Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80(ABXN.1), XMG1930-30...
Moderate
Unreviewed
CVE-2023-28768
was published
Aug 14, 2023
"FFRI yarai", "FFRI yarai Home and Business Edition" and their OEM products handle exceptional...
Low
Unreviewed
CVE-2023-39341
was published
Aug 9, 2023
Due to insufficient file permissions, unprivileged users could gain access to unencrypted user...
Critical
Unreviewed
CVE-2023-21408
was published
Aug 3, 2023
Due to insufficient file permissions, unprivileged users could gain access to unencrypted...
Critical
Unreviewed
CVE-2023-21409
was published
Aug 3, 2023
An uncaught exception vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing...
High
Unreviewed
CVE-2023-33370
was published
Aug 3, 2023
ProTip!
Advisories are also available from the
GraphQL API