GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,970

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,423 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Unauthorized access to Gateway user capabilities Critical Unreviewed

CVE-2022-27510 was published Nov 9, 2022

A improper authentication vulnerability in Fortinet FortiSIEM before 6.5.0 allows a local... High Unreviewed

CVE-2022-26119 was published Nov 2, 2022

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16, macOS... Moderate Unreviewed

CVE-2022-32928 was published Nov 2, 2022

A lock screen issue was addressed with improved state management. This issue is fixed in iOS 15.7... Moderate Unreviewed

CVE-2022-32935 was published Nov 2, 2022

Broken access controls on PDFtron data in M-Files Hubshare before 3.3.11.3 allows unauthenticated... High Unreviewed

CVE-2022-39018 was published Nov 1, 2022

Broken access controls on PDFtron WebviewerUI in M-Files Hubshare before 3.3.11.3 allows... High Unreviewed

CVE-2022-39019 was published Nov 1, 2022

In affected versions of Octopus Server where access is managed by an external authentication... Critical Unreviewed

CVE-2022-2572 was published Nov 1, 2022

PwnDoc through 0.5.3 might allow remote attackers to identify valid user account names by... Moderate Unreviewed

CVE-2022-44022 was published Oct 30, 2022

The HEIDENHAIN Controller TNC 640, version 340590 07 SP5, running HEROS 5.08.3 controlling the... Critical Unreviewed

CVE-2022-41648 was published Oct 28, 2022

Vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise... Critical Unreviewed

CVE-2022-37913 was published Oct 28, 2022

Vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise... Critical Unreviewed

CVE-2022-37914 was published Oct 28, 2022

An unauthenticated attacker with network access to a victim's Rockwell Automation FactoryTalk... High Unreviewed

CVE-2022-38744 was published Oct 27, 2022

CWE-302 Authentication Bypass by Assumed-Immutable Data in AliveCor Kardia App version 5.17.1... Moderate Unreviewed

CVE-2022-40703 was published Oct 27, 2022

A vulnerability has been found in SourceCodester Sanitization Management System 1.0 and... Critical Unreviewed

CVE-2022-3674 was published Oct 26, 2022

A vulnerability has been identified in Siveillance Video Mobile Server V2022 R2 (All versions <... Critical Unreviewed

CVE-2022-43400 was published Oct 21, 2022

Dell PowerStore versions 2.1.0.x contain an Authentication bypass vulnerability. A remote... Critical Unreviewed

CVE-2022-26870 was published Oct 21, 2022

Tenda 11N with firmware version V5.07.33_cn suffers from an Authentication Bypass vulnerability. Critical Unreviewed

CVE-2022-42233 was published Oct 20, 2022

An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version... Critical Unreviewed

CVE-2022-40684 was published Oct 18, 2022

An Improper Authentication vulnerability in the kernel of Juniper Networks Junos OS allows an... Moderate Unreviewed

CVE-2022-22237 was published Oct 18, 2022

Remote code execution vulnerability due to insufficient user privilege verification in... Critical Unreviewed

CVE-2022-23769 was published Oct 17, 2022

An issue has been discovered in GitLab affecting all versions starting from 12.10 before 15.1.6,... High Unreviewed

CVE-2022-2533 was published Oct 17, 2022

An issue in OXHOO TP50 OXH1.50 allows unauthenticated attackers to access the administrative... Critical Unreviewed

CVE-2022-41436 was published Oct 15, 2022

OpenHarmony-v3.1.2 and prior versions have an authenication bypass vulnerability in a callback... High Unreviewed

CVE-2022-42463 was published Oct 14, 2022

The fingerprint module has service logic errors.Successful exploitation of this vulnerability... Critical Unreviewed

CVE-2022-38982 was published Oct 14, 2022

Boodskap IoT Platform v4.4.9-02 allows attackers to escalate privileges via a crafted request... High Unreviewed

CVE-2022-35135 was published Oct 14, 2022

Previous 1…36…137 Next

Previous 1 2 … 34 35 36 37 38 … 136 137 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,423 advisories