GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
765 advisories
Filter by severity
STRIMZI incorrect access control
High
CVE-2024-36543
was published
for
io.strimzi:strimzi
(Maven)
Jun 17, 2024
Toshiba printers provides API without authentication for internal access. A local attacker can...
High
Unreviewed
CVE-2024-27169
was published
Jun 14, 2024
Deep Sea Electronics DSE855 Configuration Backup Missing Authentication Information Disclosure...
Moderate
Unreviewed
CVE-2024-5947
was published
Jun 13, 2024
Deep Sea Electronics DSE855 Restart Missing Authentication Denial-of-Service Vulnerability. This...
Moderate
Unreviewed
CVE-2024-5952
was published
Jun 13, 2024
Deep Sea Electronics DSE855 Factory Reset Missing Authentication Denial-of-Service Vulnerability....
High
Unreviewed
CVE-2024-5951
was published
Jun 13, 2024
Missing Authentication for Critical Function vulnerability in Aruphash Crafthemes Demo Import...
High
Unreviewed
CVE-2024-34800
was published
Jun 10, 2024
Under certain circumstances communications between the ICU tool and an iSTAR Pro door controller...
Unknown
Unreviewed
CVE-2024-32752
was published
Jun 6, 2024
IBM System Storage DS8900F 89.22.19.0, 89.30.68.0, 89.32.40.0, 89.33.48.0, 89.40.83.0, and 89.40...
Moderate
Unreviewed
CVE-2024-22326
was published
Jun 6, 2024
Unauthenticated Access to sensitive settings in Argo CD
Moderate
CVE-2024-37152
was published
for
github.com/argoproj/argo-cd/v2/server
(Go)
Jun 6, 2024
A vulnerability in the Network Access Manager (NAM) module of Cisco Secure Client could allow an...
Moderate
Unreviewed
CVE-2024-20391
was published
May 15, 2024
When configuring Arc (e.g. during the first setup), a local web interface is provided to ease the...
High
Unreviewed
CVE-2023-5935
was published
May 15, 2024
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected...
High
Unreviewed
CVE-2024-27942
was published
May 14, 2024
The PostgreSQL implementation in Brocade SANnav versions before 2.3.0a is vulnerable to an...
High
Unreviewed
CVE-2024-2860
was published
May 8, 2024
D-Link DAP-2622 DDP Set SSID List Missing Authentication Vulnerability. This vulnerability allows...
Moderate
Unreviewed
CVE-2023-37325
was published
May 8, 2024
NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information...
Moderate
Unreviewed
CVE-2021-34983
was published
May 8, 2024
By design, the DHCP protocol does not authenticate messages, including for example the classless...
High
Unreviewed
CVE-2024-3661
was published
May 6, 2024
Voltronic Power ViewPower getModbusPassword Missing Authentication Information Disclosure...
High
Unreviewed
CVE-2023-51587
was published
May 3, 2024
D-Link G416 httpd Missing Authentication for Critical Function Remote Code Execution...
High
Unreviewed
CVE-2023-50199
was published
May 3, 2024
D-Link D-View shutdown_coreserver Missing Authentication Denial-of-Service Vulnerability. This...
Moderate
Unreviewed
CVE-2023-44413
was published
May 3, 2024
Control Web Panel Missing Authentication Remote Code Execution Vulnerability. This vulnerability...
Critical
Unreviewed
CVE-2023-42121
was published
May 3, 2024
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network...
High
Unreviewed
CVE-2023-41183
was published
May 3, 2024
D-Link DAP-1325 HNAP Missing Authentication Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-41187
was published
May 3, 2024
D-Link DAP-1325 CGI Missing Authentication Information Disclosure Vulnerability. This...
Moderate
Unreviewed
CVE-2023-41186
was published
May 3, 2024
Triangle MicroWorks SCADA Data Gateway Missing Authentication Vulnerability. This vulnerability...
Critical
Unreviewed
CVE-2023-39457
was published
May 3, 2024
Triangle MicroWorks SCADA Data Gateway get_config Missing Authentication Information Disclosure...
Moderate
Unreviewed
CVE-2023-39466
was published
May 3, 2024
ProTip!
Advisories are also available from the
GraphQL API