GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,150
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
95,337 advisories
Filter by severity
An issue was discovered in /bin/mini_upnpd on D-Link DIR-619L 2.06beta devices. There is a heap...
High
Unreviewed
CVE-2020-19323
was published
Sep 11, 2023
Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1,...
High
Unreviewed
CVE-2023-36497
was published
Sep 11, 2023
Zoho ManageEngine ADManager Plus before Build 7200 allows admin users to execute commands on the...
High
Unreviewed
CVE-2023-38743
was published
Sep 11, 2023
An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the...
High
Unreviewed
CVE-2023-39070
was published
Sep 11, 2023
ASUS RT-AX55 v3.0.0.4.386.51598 was discovered to contain an authenticated command injection...
High
Unreviewed
CVE-2023-39780
was published
Sep 11, 2023
Buffer Overflow vulnerability in NBD80S09S-KLC v.YK_HZXM_NBD80S09S-KLC_V4.03.R11.7601.Nat.OnvifC...
High
Unreviewed
CVE-2023-39068
was published
Sep 11, 2023
Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1,...
High
Unreviewed
CVE-2023-38256
was published
Sep 11, 2023
Magento LTS's guest order "protect code" can be brute-forced too easily
High
CVE-2023-41879
was published
for
openmage/magento-lts
(Composer)
Sep 11, 2023
Buffer Overflow vulnerability in D-Link DIR-605L, hardware version AX, firmware version 1.17beta...
High
Unreviewed
CVE-2020-19318
was published
Sep 11, 2023
Adobe Acrobat Reader versions 2019.021.20056 and earlier are affected by a Stack-based Buffer...
High
Unreviewed
CVE-2019-16470
was published
Sep 11, 2023
Adobe InCopy versions 17.1 (and earlier) and 16.4.1 (and earlier) are affected by an out-of...
High
Unreviewed
CVE-2022-28836
was published
Sep 11, 2023
Adobe InDesign versions 17.1 (and earlier) and 16.4.1 (and earlier) are affected by an out-of...
High
Unreviewed
CVE-2022-28831
was published
Sep 11, 2023
Adobe InDesign versions 17.1 (and earlier) and 16.4.1 (and earlier) are affected by an out-of...
High
Unreviewed
CVE-2022-28833
was published
Sep 11, 2023
BASupSrvcUpdater.exe in N-able Take Control Agent through 7.0.41.1141 before 7.0.43 has a TOCTOU...
High
Unreviewed
CVE-2023-27470
was published
Sep 11, 2023
Adobe InDesign versions 17.1 (and earlier) and 16.4.1 (and earlier) are affected by an out-of...
High
Unreviewed
CVE-2022-28832
was published
Sep 11, 2023
Adobe InCopy versions 17.1 (and earlier) and 16.4.1 (and earlier) are affected by an Use-After...
High
Unreviewed
CVE-2022-28835
was published
Sep 11, 2023
Adobe Acrobat Reader versions 22.001.20142 (and earlier), 20.005.30334 (and earlier) and 17.012...
High
Unreviewed
CVE-2022-34227
was published
Sep 11, 2023
Shenzhen Hichip Vision Technology IP Camera Firmware V11.4.8.1.1-20170926 has a denial of service...
High
Unreviewed
CVE-2022-23382
was published
Sep 11, 2023
Adobe InCopy versions 17.1 (and earlier) and 16.4.1 (and earlier) are affected by an out-of...
High
Unreviewed
CVE-2022-28834
was published
Sep 11, 2023
Adobe Acrobat Reader versions 2019.021.20056 and earlier are affected by a Use After Free...
High
Unreviewed
CVE-2019-16471
was published
Sep 11, 2023
Adobe Acrobat Reader versions 22.001.20142 (and earlier), 20.005.30334 (and earlier) and 17.012...
High
Unreviewed
CVE-2022-34224
was published
Sep 11, 2023
An issue was discovered in MmMapIoSpace routine in Foxconn Live Update Utility 2.1.6.26, allows...
High
Unreviewed
CVE-2020-24088
was published
Sep 11, 2023
An issue was discovered in Qubo Smart Plug 10A version HSP02_01_01_14_SYSTEM-10A, allows...
High
Unreviewed
CVE-2023-36161
was published
Sep 11, 2023
RKE2 supervisor port is vulnerable to unauthenticated remote denial-of-service (DoS) attack via TLS SAN stuffing attack
High
CVE-2023-32186
was published
for
github.com/rancher/rke2
(Go)
Sep 11, 2023
K3s apiserver port is vulnerable to unauthenticated remote denial-of-service (DoS) attack via TLS SAN stuffing attack
High
CVE-2023-32187
was published
for
github.com/k3s-io/k3s
(Go)
Sep 11, 2023
ProTip!
Advisories are also available from the
GraphQL API