Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

383 advisories

Loading
Apollo Router Unnamed "Subscription" operation results in Denial-of-Service Moderate
CVE-2023-41317 was published for apollo-router (Rust) Sep 7, 2023
nmoutschen abernix
o0Ignition0o BrynCooke peakematt jasonbarnett667 Geal
A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine (ISE)... High Unreviewed
CVE-2023-20243 was published Sep 6, 2023
Improper Handling of Exceptional Conditions vulnerability in Daurnimator HTTP Library for Lua... High Unreviewed
CVE-2023-4540 was published Sep 5, 2023
An Improper Handling of Unicode Encoding vulnerability in the Schweitzer Engineering... Moderate Unreviewed
CVE-2023-31169 was published Aug 31, 2023
Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola... High Unreviewed
CVE-2023-23774 was published Aug 29, 2023
A lack of exception handling in the Renault Easy Link Multimedia System Software Version... Moderate Unreviewed
CVE-2023-39801 was published Aug 24, 2023
Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80(ABXN.1), XMG1930-30... Moderate Unreviewed
CVE-2023-28768 was published Aug 14, 2023
"FFRI yarai", "FFRI yarai Home and Business Edition" and their OEM products handle exceptional... Low Unreviewed
CVE-2023-39341 was published Aug 9, 2023
Due to insufficient file permissions, unprivileged users could gain access to unencrypted user... Critical Unreviewed
CVE-2023-21408 was published Aug 3, 2023
Due to insufficient file permissions, unprivileged users could gain access to unencrypted... Critical Unreviewed
CVE-2023-21409 was published Aug 3, 2023
An uncaught exception vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing... High Unreviewed
CVE-2023-33370 was published Aug 3, 2023
An authenticated attacker with guest privileges or higher can cause the iControl SOAP process to... Moderate Unreviewed
CVE-2023-38419 was published Aug 2, 2023
An unhandled error in Vault Enterprise's namespace creation may cause the Vault process to crash,... Unknown Unreviewed
CVE-2023-3774 was published Jul 28, 2023
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper... High Unreviewed
CVE-2023-36832 was published Jul 14, 2023
Vulnerability of failures to capture exceptions in the communication framework. Successful... High Unreviewed
CVE-2023-1695 was published Jul 6, 2023
In Progress MOVEit Transfer before 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022... High Unreviewed
CVE-2023-36933 was published Jul 5, 2023
In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to... High Unreviewed
CVE-2023-20692 was published Jul 4, 2023
On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent... High Unreviewed
CVE-2023-24510 was published Jun 6, 2023
Improper random reading in CIRCL Moderate
CVE-2023-1732 was published for github.com/cloudflare/circl (Go) May 11, 2023
An issue was discovered in Exynos Mobile Processor and Modem for Exynos Modem 5123, Exynos Modem... High Unreviewed
CVE-2023-29092 was published May 9, 2023
Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to... High Unreviewed
CVE-2022-27978 was published Apr 26, 2023
No exception handling vulnerability which revealed sensitive or excessive information to users. High Unreviewed
CVE-2023-23837 was published Apr 25, 2023
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware,... High Unreviewed
CVE-2023-0204 was published Apr 22, 2023
XWiki Platform vulnerable to page render failure due to broken translations Moderate
CVE-2023-29520 was published for org.xwiki.platform:xwiki-platform-localization-source-wiki (Maven) Apr 20, 2023
An issue was discovered in ONOS 2.5.1. In IntentManager, the install-requested intent (which... High Unreviewed
CVE-2021-38363 was published Apr 20, 2023
ProTip! Advisories are also available from the GraphQL API