Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,338
Maven
5,000+
npm
3,973
NuGet
715
pip
3,769
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

943 advisories

Loading
In Minikin, there is a possible way to trigger ANR by showing a malicious message due to resource... High Unreviewed
CVE-2023-21339 was published Oct 30, 2023
Drivers are not always robust to extremely large draw calls and in some cases this scenario could... High Unreviewed
CVE-2023-5724 was published Oct 25, 2023
PingFederate Administrative Console dependency contains a weakness where console becomes... High Unreviewed
CVE-2023-39219 was published Oct 25, 2023
An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block... High Unreviewed
CVE-2023-43622 was published Oct 23, 2023
IBM Security Verify Access OIDC Provider could allow a remote user to cause a denial of service... High Unreviewed
CVE-2022-43740 was published Oct 14, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... High Unreviewed
CVE-2023-36841 was published Oct 13, 2023
ONTAP 9 versions prior to 9.8P19, 9.9.1P16, 9.10.1P12, 9.11.1P8, 9.12.1P2 and 9.13.1 are... High Unreviewed
CVE-2023-27314 was published Oct 12, 2023
A denial-of-service vulnerability exists in the vpnserver ConnectionAccept() functionality of... High Unreviewed
CVE-2023-25774 was published Oct 12, 2023
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-36606 was published Oct 10, 2023
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-36579 was published Oct 10, 2023
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-36431 was published Oct 10, 2023
When TCP Verified Accept is enabled on a TCP profile that is configured on a Virtual Server,... High Unreviewed
CVE-2023-40542 was published Oct 10, 2023
Mattermost fails to enforce a limit for the size of the cache entry for OpenGraph data allowing... High Unreviewed
CVE-2023-5330 was published Oct 9, 2023
A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow... High Unreviewed
CVE-2023-20259 was published Oct 4, 2023
Transient DOS in WLAN Firmware while parsing a NAN management frame. High Unreviewed
CVE-2023-33026 was published Oct 3, 2023
A vulnerability in the networking component of Cisco access point (AP) software could allow an... High Unreviewed
CVE-2023-20176 was published Sep 27, 2023
A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a... High Unreviewed
CVE-2023-5157 was published Sep 27, 2023
Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This... High Unreviewed
CVE-2023-43767 was published Sep 22, 2023
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of a PE file.... High Unreviewed
CVE-2023-42523 was published Sep 18, 2023
Certain WithSecure products allow a remote crash of a scanning engine via processing of an import... High Unreviewed
CVE-2023-42522 was published Sep 18, 2023
Certain WithSecure products allow a remote crash of a scanning engine via processing of a... High Unreviewed
CVE-2023-42521 was published Sep 18, 2023
Certain WithSecure products allow a remote crash of a scanning engine via decompression of... High Unreviewed
CVE-2023-42526 was published Sep 18, 2023
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted... High Unreviewed
CVE-2023-42520 was published Sep 18, 2023
Buffer Overflow vulnerability in Control de Ciber version 1.650, in the printing function.... High Unreviewed
CVE-2022-48475 was published Sep 15, 2023
Control de Ciber, in its 1.650 version, is affected by a Denial of Service condition through the... High Unreviewed
CVE-2022-48474 was published Sep 15, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database