Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

145 advisories

Loading
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). Affected... Moderate Unreviewed
CVE-2023-48431 was published Dec 12, 2023
Mattermost fails to validate the type of the "reminder" body request parameter allowing an... Moderate Unreviewed
CVE-2023-49607 was published Dec 12, 2023
Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to... Moderate Unreviewed
CVE-2023-39205 was published Nov 15, 2023
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially... Moderate Unreviewed
CVE-2023-22290 was published Nov 14, 2023
Mattermost denial of service vulnerability Moderate
CVE-2023-5967 was published for github.com/mattermost/mattermost-server/v6 (Go) Nov 6, 2023
An Improper Check for Unusual or Exceptional Conditions in the Packet Forwarding Engine (pfe) of... Moderate Unreviewed
CVE-2023-44196 was published Oct 13, 2023
Parameter verification vulnerability in the window module.Successful exploitation of this... Moderate Unreviewed
CVE-2023-41304 was published Oct 11, 2023
An improper check for an exceptional condition in the Insider Threat Management (ITM) Server... Moderate Unreviewed
CVE-2023-4828 was published Sep 13, 2023
Electron context isolation bypass via nested unserializable return value Moderate
CVE-2023-29198 was published for electron (npm) Sep 6, 2023
MarshallOfSound nornagon
In OpenBGPD before 8.1, incorrect handling of BGP update data (length of path attributes) set by... Moderate Unreviewed
CVE-2023-38283 was published Aug 29, 2023
In onAccessPointChanged of AccessPointPreference.java, there is a possible way for unprivileged... Moderate Unreviewed
CVE-2023-21230 was published Aug 15, 2023
Shopware improper mail validation vulnerability Moderate
CVE-2023-34099 was published for shopware/shopware (Composer) Jun 28, 2023
A lack of exception handling in the Volkswagen Discover Media Infotainment System Software... Moderate Unreviewed
CVE-2023-34733 was published Jun 16, 2023
In several methods of JobStore.java, uncaught exceptions in job map parsing could lead to local... Moderate Unreviewed
CVE-2023-21137 was published Jun 15, 2023
ink! vulnerable to incorrect decoding of storage value when using `DelegateCall` Moderate
CVE-2023-34449 was published for ink (Rust) Jun 14, 2023
A mishandled security check when creating a WebSocket in a WebWorker caused the Content Security... Moderate Unreviewed
CVE-2023-23602 was published Jun 2, 2023
In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and Splunk Cloud Platform versions... Moderate Unreviewed
CVE-2023-32716 was published Jun 1, 2023
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that... Moderate Unreviewed
CVE-2023-25620 was published Apr 19, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the bbe-smgd of Juniper... Moderate Unreviewed
CVE-2023-28974 was published Apr 18, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper... Moderate Unreviewed
CVE-2023-28979 was published Apr 18, 2023
An Unexpected Status Code or Return Value vulnerability in the kernel of Juniper Networks Junos... Moderate Unreviewed
CVE-2023-28975 was published Apr 18, 2023
Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol... Moderate Unreviewed
CVE-2022-3192 was published Mar 31, 2023
Improper condition check in some Intel(R) SPS firmware before version SPS_E3_06.00.03.300.0 may... Moderate Unreviewed
CVE-2022-36794 was published Feb 16, 2023
Improper conditions check in the Open CAS software maintained by Intel(R) before version 22.3.1... Moderate Unreviewed
CVE-2022-29523 was published Feb 16, 2023
IPFS go-bitfield vulnerable to DoS via malformed size arguments Moderate
CVE-2023-23626 was published for github.com/ipfs/go-bitfield (Go) Feb 10, 2023
Jorropo
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database