Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

170 advisories

Loading
Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series... High Unreviewed
CVE-2022-20690 was published Dec 12, 2022
In findAllDeAccounts of AccountsDb.java, there is a possible denial of service due to resource... Moderate Unreviewed
CVE-2021-0934 was published Dec 13, 2022
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V3.0.1),... High Unreviewed
CVE-2021-44693 was published Dec 13, 2022
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist... High Unreviewed
CVE-2022-20488 was published Dec 13, 2022
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist... High Unreviewed
CVE-2022-20491 was published Dec 13, 2022
Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated... Low Unreviewed
CVE-2022-46143 was published Dec 13, 2022
The demon image annotation plugin for WordPress is vulnerable to improper input validation in... High Unreviewed
CVE-2022-4171 was published Dec 13, 2022
In multiple locations, there is a possible display crash loop due to improper input validation.... Low Unreviewed
CVE-2022-20543 was published Dec 19, 2022
OX App Suite through 7.10.6 has Uncontrolled Resource Consumption via a large request body... Moderate Unreviewed
CVE-2022-37312 was published Dec 26, 2022
OX App Suite through 7.10.6 has Uncontrolled Resource Consumption via a large location request... Moderate Unreviewed
CVE-2022-37311 was published Dec 26, 2022
An Unchecked Input for Loop Condition vulnerability in a NAT library of Juniper Networks Junos OS... Moderate Unreviewed
CVE-2023-22409 was published Jan 13, 2023
In Condition of Condition.java, there is a possible way to grant notification access due to... High Unreviewed
CVE-2022-20493 was published Jan 26, 2023
For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling... High Unreviewed
CVE-2021-28510 was published Jan 26, 2023
The geofencing kernel code does not verify the length of the input data. Successful exploitation... High Unreviewed
CVE-2022-48298 was published Feb 9, 2023
The geofencing kernel code has a vulnerability of not verifying the length of the input data.... High Unreviewed
CVE-2022-48297 was published Feb 9, 2023
IPFS go-bitfield vulnerable to DoS via malformed size arguments Moderate
CVE-2023-23626 was published for github.com/ipfs/go-bitfield (Go) Feb 10, 2023
Jorropo
A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7... Moderate Unreviewed
CVE-2022-3411 was published Feb 14, 2023
A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the... High Unreviewed
CVE-2022-4904 was published Mar 7, 2023
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer driver... Low Unreviewed
CVE-2023-0195 was published Apr 1, 2023
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer... Moderate Unreviewed
CVE-2023-0194 was published Apr 1, 2023
CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template... High Unreviewed
CVE-2023-30269 was published Apr 26, 2023
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS... Moderate Unreviewed
CVE-2023-27941 was published May 8, 2023
Multiple validation issues were addressed with improved input sanitization. This issue is fixed... Moderate Unreviewed
CVE-2023-27961 was published May 8, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20708 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20709 was published May 16, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database