GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 19,370
Composer 3,968
Erlang 29
GitHub Actions 16
Go 1,749
Maven 4,978
npm 3,509
NuGet 609
pip 3,084
Pub 10
RubyGems 832
Rust 782
Swift 34

Unreviewed advisories

All unreviewed 221,313

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

765 advisories

Filter by severity

Sort by

Least recently updated

STRIMZI incorrect access control High

CVE-2024-36543 was published for io.strimzi:strimzi (Maven) Jun 17, 2024

Toshiba printers provides API without authentication for internal access. A local attacker can... High Unreviewed

CVE-2024-27169 was published Jun 14, 2024

Deep Sea Electronics DSE855 Configuration Backup Missing Authentication Information Disclosure... Moderate Unreviewed

CVE-2024-5947 was published Jun 13, 2024

Deep Sea Electronics DSE855 Restart Missing Authentication Denial-of-Service Vulnerability. This... Moderate Unreviewed

CVE-2024-5952 was published Jun 13, 2024

Deep Sea Electronics DSE855 Factory Reset Missing Authentication Denial-of-Service Vulnerability.... High Unreviewed

CVE-2024-5951 was published Jun 13, 2024

Missing Authentication for Critical Function vulnerability in Aruphash Crafthemes Demo Import... High Unreviewed

CVE-2024-34800 was published Jun 10, 2024

Under certain circumstances communications between the ICU tool and an iSTAR Pro door controller... Unknown Unreviewed

CVE-2024-32752 was published Jun 6, 2024

IBM System Storage DS8900F 89.22.19.0, 89.30.68.0, 89.32.40.0, 89.33.48.0, 89.40.83.0, and 89.40... Moderate Unreviewed

CVE-2024-22326 was published Jun 6, 2024

Unauthenticated Access to sensitive settings in Argo CD Moderate

CVE-2024-37152 was published for github.com/argoproj/argo-cd/v2/server (Go) Jun 6, 2024

A vulnerability in the Network Access Manager (NAM) module of Cisco Secure Client could allow an... Moderate Unreviewed

CVE-2024-20391 was published May 15, 2024

When configuring Arc (e.g. during the first setup), a local web interface is provided to ease the... High Unreviewed

CVE-2023-5935 was published May 15, 2024

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected... High Unreviewed

CVE-2024-27942 was published May 14, 2024

The PostgreSQL implementation in Brocade SANnav versions before 2.3.0a is vulnerable to an... High Unreviewed

CVE-2024-2860 was published May 8, 2024

D-Link DAP-2622 DDP Set SSID List Missing Authentication Vulnerability. This vulnerability allows... Moderate Unreviewed

CVE-2023-37325 was published May 8, 2024

NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information... Moderate Unreviewed

CVE-2021-34983 was published May 8, 2024

By design, the DHCP protocol does not authenticate messages, including for example the classless... High Unreviewed

CVE-2024-3661 was published May 6, 2024

Voltronic Power ViewPower getModbusPassword Missing Authentication Information Disclosure... High Unreviewed

CVE-2023-51587 was published May 3, 2024

D-Link G416 httpd Missing Authentication for Critical Function Remote Code Execution... High Unreviewed

CVE-2023-50199 was published May 3, 2024

D-Link D-View shutdown_coreserver Missing Authentication Denial-of-Service Vulnerability. This... Moderate Unreviewed

CVE-2023-44413 was published May 3, 2024

Control Web Panel Missing Authentication Remote Code Execution Vulnerability. This vulnerability... Critical Unreviewed

CVE-2023-42121 was published May 3, 2024

NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network... High Unreviewed

CVE-2023-41183 was published May 3, 2024

D-Link DAP-1325 HNAP Missing Authentication Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2023-41187 was published May 3, 2024

D-Link DAP-1325 CGI Missing Authentication Information Disclosure Vulnerability. This... Moderate Unreviewed

CVE-2023-41186 was published May 3, 2024

Triangle MicroWorks SCADA Data Gateway Missing Authentication Vulnerability. This vulnerability... Critical Unreviewed

CVE-2023-39457 was published May 3, 2024

Triangle MicroWorks SCADA Data Gateway get_config Missing Authentication Information Disclosure... Moderate Unreviewed

CVE-2023-39466 was published May 3, 2024

Previous 1 2 3 4 5 … 30 31 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

765 advisories