GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,967
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,076
Pub
10
RubyGems
832
Rust
781
Swift
34
Unreviewed advisories
All unreviewed
5,000+
108,855 advisories
Filter by severity
Cross Site Scripting vulnerability in Combodo iTop v.3.1.0-2-11973 allows a local attacker to...
Moderate
Unreviewed
CVE-2023-47488
was published
Nov 9, 2023
A buffer overflow was reported in the SmiFlash module in some Lenovo Desktop products that may...
Moderate
Unreviewed
CVE-2023-43578
was published
Nov 9, 2023
A buffer overflow was reported in the SmuV11Dxe driver in some Lenovo Desktop products that may...
Moderate
Unreviewed
CVE-2023-43579
was published
Nov 9, 2023
A buffer overflow was reported in the SmuV11DxeVMR module in some Lenovo Desktop products that...
Moderate
Unreviewed
CVE-2023-43580
was published
Nov 9, 2023
A memory leakage vulnerability was reported in the 534D0740 DXE driver that may allow a local...
Moderate
Unreviewed
CVE-2023-45077
was published
Nov 9, 2023
A memory leakage vulnerability was reported in the DustFilterAlertSmm SMM driver that may allow a...
Moderate
Unreviewed
CVE-2023-45078
was published
Nov 9, 2023
A memory leakage vulnerability was reported in the SWSMI_Shadow DXE driver that may allow a local...
Moderate
Unreviewed
CVE-2023-45075
was published
Nov 9, 2023
HCL Connections is vulnerable to reflected cross-site scripting (XSS) where an attacker may...
Moderate
Unreviewed
CVE-2023-37533
was published
Nov 9, 2023
Jaspersoft Clarity PPM version 14.3.0.298 was discovered to contain an arbitrary file upload...
Moderate
Unreviewed
CVE-2023-37790
was published
Nov 9, 2023
A buffer overflow was reported in the Update_WMI module in some Lenovo Desktop products that may...
Moderate
Unreviewed
CVE-2023-43581
was published
Nov 9, 2023
A memory leakage vulnerability was reported in the 534D0140 DXE driver that may allow a local...
Moderate
Unreviewed
CVE-2023-45076
was published
Nov 9, 2023
A memory leakage vulnerability was reported in the NvmramSmm SMM driver that may allow a local...
Moderate
Unreviewed
CVE-2023-45079
was published
Nov 9, 2023
A buffer over-read was reported in the BiosExtensionLoader module in some Lenovo Desktop products...
Moderate
Unreviewed
CVE-2023-43572
was published
Nov 9, 2023
A buffer over-read was reported in the LEMALLDriversConnectedEventHook module in some Lenovo...
Moderate
Unreviewed
CVE-2023-43574
was published
Nov 9, 2023
A buffer overflow was reported in the UltraFunctionTable module in some Lenovo Desktop products...
Moderate
Unreviewed
CVE-2023-43575
was published
Nov 9, 2023
A buffer overflow was reported in the OemSmi module in some Lenovo Desktop products that may...
Moderate
Unreviewed
CVE-2023-43569
was published
Nov 9, 2023
A potential vulnerability was reported in the SMI callback function of the OemSmi driver that...
Moderate
Unreviewed
CVE-2023-43570
was published
Nov 9, 2023
A buffer overflow was reported in the FmpSipoCapsuleDriver driver in the IdeaPad Duet 3-10IGL5...
Moderate
Unreviewed
CVE-2023-5075
was published
Nov 9, 2023
A buffer overflow was reported in the BiosExtensionLoader module in some Lenovo Desktop products...
Moderate
Unreviewed
CVE-2023-43571
was published
Nov 9, 2023
A potential use-after-free vulnerability was reported in the Lenovo View driver that could...
Moderate
Unreviewed
CVE-2023-4891
was published
Nov 9, 2023
A buffer over-read was reported in the LemSecureBootForceKey module in some Lenovo Desktop...
Moderate
Unreviewed
CVE-2023-43568
was published
Nov 9, 2023
A buffer overflow was reported in the ReFlash module in some Lenovo Desktop products that may...
Moderate
Unreviewed
CVE-2023-43577
was published
Nov 9, 2023
A buffer overflow was reported in the WMISwSmi module in some Lenovo Desktop products that may...
Moderate
Unreviewed
CVE-2023-43576
was published
Nov 9, 2023
A vulnerability was reported in some ThinkPad BIOS that could allow a physical or local attacker...
Moderate
Unreviewed
CVE-2023-5078
was published
Nov 9, 2023
A buffer overflow was reported in the LEMALLDriversConnectedEventHook module in some Lenovo...
Moderate
Unreviewed
CVE-2023-43573
was published
Nov 9, 2023
ProTip!
Advisories are also available from the
GraphQL API