GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
242 advisories
Filter by severity
Insecure temporary file in the installer for Zoom Rooms before version 5.15.0 may allow an...
High
Unreviewed
CVE-2023-34119
was published
Jul 11, 2023
An issue found in Marukyu Line v.13.4.1 allows a remote attacker to gain access to sensitive...
High
Unreviewed
CVE-2023-31818
was published
Jul 11, 2023
Exposure of Sensitive Information to an Unauthorized Actor in the SICK ICR890-4 could allow an...
High
Unreviewed
CVE-2023-3270
was published
Jul 10, 2023
Unauthenticated endpoints in the SICK ICR890-4 could allow an unauthenticated
remote attacker to...
High
Unreviewed
CVE-2023-35696
was published
Jul 10, 2023
A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause
remote...
High
Unreviewed
CVE-2023-27976
was published
Jul 6, 2023
Exposure of resource to wrong sphere issue exists in WL-WN531AX2 firmware versions prior to...
High
Unreviewed
CVE-2023-32613
was published
Jun 30, 2023
On Unix platforms, the Go runtime does not behave differently when a binary is run with the...
High
Unreviewed
CVE-2023-29403
was published
Jun 8, 2023
Landscape's server-status page exposed sensitive system information. This data leak included GET...
High
Unreviewed
CVE-2023-32550
was published
Jun 6, 2023
An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console...
High
Unreviewed
CVE-2023-28344
was published
May 31, 2023
Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Finex Media...
High
Unreviewed
CVE-2023-2703
was published
May 23, 2023
Exposure of data element to wrong session in the Intel DCM software before version 5.0.1 may...
High
Unreviewed
CVE-2022-40210
was published
May 10, 2023
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR...
High
Unreviewed
CVE-2023-26243
was published
Apr 27, 2023
Aten PE8108 2.4.232 is vulnerable to Incorrect Access Control. Restricted users have access to...
High
Unreviewed
CVE-2023-25409
was published
Apr 11, 2023
In telecom service, there is a missing permission check. This could lead to local denial of...
High
Unreviewed
CVE-2022-47338
was published
Apr 11, 2023
Use of hard-coded credentials vulnerability in Buffalo network devices allows an attacker to...
High
Unreviewed
CVE-2023-26588
was published
Apr 11, 2023
An information disclosure vulnerability exists in SAP Landscape Management - version 3.0,...
High
Unreviewed
CVE-2023-26458
was published
Apr 11, 2023
In multiple products of CODESYS v3 in multiple versions a remote low privileged user could...
High
Unreviewed
CVE-2022-4224
was published
Mar 23, 2023
There exists an information disclosure vulnerability in SmartBear Zephyr Enterprise through 7.15...
High
Unreviewed
CVE-2023-22892
was published
Mar 8, 2023
In Epiphany (aka GNOME Web) through 43.0, untrusted web content can trick users into exfiltrating...
High
Unreviewed
CVE-2023-26081
was published
Feb 20, 2023
An attacker authenticated as a non-admin user with local access to a server port assigned to the...
High
Unreviewed
CVE-2023-24523
was published
Feb 14, 2023
Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs ...
High
Unreviewed
CVE-2022-34387
was published
Feb 11, 2023
Improper access control vulnerability in MyFiles prior to versions 12.2.09 in Android R(11), 13.1...
High
Unreviewed
CVE-2023-21445
was published
Feb 9, 2023
Last Yard 22.09.8-1 is vulnerable to Cross-origin resource sharing (CORS).
High
Unreviewed
CVE-2022-47717
was published
Feb 1, 2023
A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause all remote...
High
Unreviewed
CVE-2022-22732
was published
Jan 31, 2023
An improper access control vulnerability was identified in the Realtek audio driver. A local...
High
Unreviewed
CVE-2022-34405
was published
Jan 26, 2023
ProTip!
Advisories are also available from the
GraphQL API