Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

845 advisories

Loading
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-24866 was published Mar 14, 2023
Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-23409 was published Mar 14, 2023
Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-23394 was published Mar 14, 2023
There exists an information disclosure vulnerability in SmartBear Zephyr Enterprise through 7.15... High Unreviewed
CVE-2023-22892 was published Mar 8, 2023
An information disclosure vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed
CVE-2022-46257 was published Mar 7, 2023
Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated,... Moderate Unreviewed
CVE-2023-20061 was published Mar 3, 2023
Dell PowerScale OneFS 9.4.0.x contains exposure of sensitive information to an unauthorized actor... Moderate Unreviewed
CVE-2023-25536 was published Mar 2, 2023
Dell NetWorker versions 19.5 and earlier contain 'Apache Tomcat' version disclosure vulnerability... Moderate Unreviewed
CVE-2023-25544 was published Mar 1, 2023
Dell NetWorker versions 19.5 and earlier contain 'RabbitMQ' version disclosure vulnerability. A... Moderate Unreviewed
CVE-2023-24567 was published Mar 1, 2023
A vulnerability exists which allows an authenticated attacker to access sensitive information on... Moderate Unreviewed
CVE-2023-22775 was published Mar 1, 2023
An authenticated information disclosure vulnerability exists in the ArubaOS web-based management... Moderate Unreviewed
CVE-2023-22777 was published Mar 1, 2023
This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.6... Moderate Unreviewed
CVE-2022-32896 was published Feb 27, 2023
The issue was addressed with improved memory handling This issue is fixed in macOS Ventura 13.2.... Moderate Unreviewed
CVE-2023-23501 was published Feb 27, 2023
Mattermost fails to honor the ShowEmailAddress setting when constructing a response to the ... Low Unreviewed
CVE-2023-27265 was published Feb 27, 2023
In Epiphany (aka GNOME Web) through 43.0, untrusted web content can trick users into exfiltrating... High Unreviewed
CVE-2023-26081 was published Feb 20, 2023
AMI MegaRAC SPX devices allow User Enumeration through Redfish. The fixed versions are SPx12... Moderate Unreviewed
CVE-2023-25192 was published Feb 15, 2023
HTTP.sys Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-21687 was published Feb 14, 2023
Microsoft Office Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-21714 was published Feb 14, 2023
An attacker authenticated as a non-admin user with local access to a server port assigned to the... High Unreviewed
CVE-2023-24523 was published Feb 14, 2023
Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs ... High Unreviewed
CVE-2022-34387 was published Feb 11, 2023
Dell BSAFE SSL-J when used in debug mode can reveal unnecessary information. An attacker could... Moderate Unreviewed
CVE-2022-34364 was published Feb 10, 2023
PowerPath Management Appliance with versions 3.3, 3.2*, 3.1 & 3.0* contains sensitive information... Low Unreviewed
CVE-2022-34452 was published Feb 10, 2023
Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access... Low Unreviewed
CVE-2023-21438 was published Feb 9, 2023
Improper access control vulnerability in MyFiles prior to versions 12.2.09 in Android R(11), 13.1... High Unreviewed
CVE-2023-21445 was published Feb 9, 2023
Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local... Low Unreviewed
CVE-2023-21447 was published Feb 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database