Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

809 advisories

Loading
Chunghwa Telecom NOKIA G-040W-Q Firewall function has a vulnerability of input validation for... Critical Unreviewed
CVE-2023-41355 was published Nov 3, 2023
Improper Input Validation in GitHub repository mintplex-labs/anything-llm prior to 0.1.0. Critical Unreviewed
CVE-2023-5832 was published Oct 30, 2023
An Improper Input Validation vulnerability in Zscaler Client Connector on Linux allows Privilege... Critical Unreviewed
CVE-2023-28805 was published Oct 23, 2023
CSRF Token Reuse Vulnerability Critical
CVE-2023-45128 was published for github.com/gofiber/fiber/v2 (Go) Oct 17, 2023
rere61 sixcolors
the-hotmann gaby efectn ReneWerner87
FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat... Critical Unreviewed
CVE-2023-29464 was published Oct 13, 2023
Dell SmartFabric Storage Software version 1.3 and lower contain an improper input validation... Critical Unreviewed
CVE-2023-32485 was published Oct 5, 2023
Atos Unify OpenScape Session Border Controller through V10 R3.01.03 allows execution of... Critical Unreviewed
CVE-2023-36619 was published Oct 4, 2023
Atlassian has been made aware of an issue reported by a handful of customers where external... Critical Unreviewed
CVE-2023-22515 was published Oct 4, 2023
Input verification vulnerability in the fingerprint module. Successful exploitation of this... Critical Unreviewed
CVE-2022-48605 was published Sep 25, 2023
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input... Critical Unreviewed
CVE-2023-25534 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in the REST service, where an attacker may cause... Critical Unreviewed
CVE-2023-31009 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in the web UI, where an attacker may cause improper... Critical Unreviewed
CVE-2023-25533 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in the KVM service, where an attacker may cause... Critical Unreviewed
CVE-2023-25530 was published Sep 20, 2023
Improper Input Validation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page... Critical Unreviewed
CVE-2023-3710 was published Sep 12, 2023
Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability Critical Unreviewed
CVE-2023-29332 was published Sep 12, 2023
Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies... Critical Unreviewed
CVE-2023-2071 was published Sep 12, 2023
Improper input validation vulnerability in Samsung Health prior to version 6.24.2.011 allows... Critical Unreviewed
CVE-2023-30723 was published Sep 6, 2023
Apache Axis 1.x (EOL) may allow RCE when untrusted input is passed to getService Critical
CVE-2023-40743 was published for axis:axis (Maven) Sep 5, 2023
jkmartindale ebickle
Due to improper input validation, a remote attacker could execute arbitrary commands on the... Critical Unreviewed
CVE-2023-25915 was published Aug 21, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation... Critical Unreviewed
CVE-2023-2917 was published Aug 17, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation... Critical Unreviewed
CVE-2023-2915 was published Aug 17, 2023
Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation... Critical Unreviewed
CVE-2023-39405 was published Aug 13, 2023
SES's dynamic import and spread operator provides possible path to arbitrary exfiltration and execution Critical
CVE-2023-39532 was published for ses (npm) Aug 9, 2023
corrideat
Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server.This... Critical Unreviewed
CVE-2023-33934 was published Aug 9, 2023
Improper input validation in Zoom Desktop Client for Windows before 5.14.7 may allow an... Critical Unreviewed
CVE-2023-39216 was published Aug 8, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database