GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,972
Composer 4,285
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,238
npm 3,741
NuGet 668
pip 3,422
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,197

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

674 advisories

Filter by severity

Sort by

Least recently updated

NVIDIA DGX H100 BMC contains a vulnerability in the REST service, where an attacker may cause... Critical Unreviewed

CVE-2023-31009 was published Sep 20, 2023

NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input... Critical Unreviewed

CVE-2023-25534 was published Sep 20, 2023

NVIDIA DGX H100 BMC contains a vulnerability in the KVM service, where an attacker may cause... Critical Unreviewed

CVE-2023-25530 was published Sep 20, 2023

Improper Input Validation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page... Critical Unreviewed

CVE-2023-3710 was published Sep 12, 2023

Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability Critical Unreviewed

CVE-2023-29332 was published Sep 12, 2023

Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies... Critical Unreviewed

CVE-2023-2071 was published Sep 12, 2023

Improper input validation vulnerability in Samsung Health prior to version 6.24.2.011 allows... Critical Unreviewed

CVE-2023-30723 was published Sep 6, 2023

Due to improper input validation, a remote attacker could execute arbitrary commands on the... Critical Unreviewed

CVE-2023-25915 was published Aug 21, 2023

The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation... Critical Unreviewed

CVE-2023-2917 was published Aug 17, 2023

The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation... Critical Unreviewed

CVE-2023-2915 was published Aug 17, 2023

Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation... Critical Unreviewed

CVE-2023-39405 was published Aug 13, 2023

Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server.This... Critical Unreviewed

CVE-2023-33934 was published Aug 9, 2023

Improper input validation in Zoom Desktop Client for Windows before 5.14.7 may allow an... Critical Unreviewed

CVE-2023-39216 was published Aug 8, 2023

Improper Input Validation vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise,... Critical Unreviewed

CVE-2023-0636 was published Jul 6, 2023

A remote command injection vulnerability exists in the Barracuda Email Security Gateway ... Critical Unreviewed

CVE-2023-2868 was published Jul 6, 2023

Security vulnerability in Apache bRPC <1.5.0 on all platforms allows attackers to execute... Critical Unreviewed

CVE-2023-31039 was published Jul 6, 2023

White Rabbit Switch contains a vulnerability which makes it possible for an attacker to perform... Critical Unreviewed

CVE-2023-22581 was published Jul 6, 2023

Weak Configuration due to improper input validation in Modem while processing LTE security mode... Critical Unreviewed

CVE-2023-21631 was published Jul 4, 2023

A improper input validation vulnerability exists in Ivanti Endpoint Manager 2022 and below that... Critical Unreviewed

CVE-2023-28324 was published Jul 1, 2023

Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication... Critical Unreviewed

CVE-2023-20105 was published Jun 28, 2023

Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication... Critical Unreviewed

CVE-2023-20192 was published Jun 28, 2023

XSS vulnerability from InstantPlay in Galaxy Store prior to version 4.5.49.8 allows attackers to... Critical Unreviewed

CVE-2023-21516 was published May 27, 2023

Insufficient input validation in the SMU may allow an attacker to corrupt SMU SRAM potentially... Critical Unreviewed

CVE-2021-46762 was published May 9, 2023

Insufficient input validation in the ASP (AMD Secure Processor) bootloader may allow an attacker... Critical Unreviewed

CVE-2021-46754 was published May 9, 2023

Insufficient validation of inputs in SVC_MAP_USER_STACK in the ASP (AMD Secure Processor)... Critical Unreviewed

CVE-2021-46756 was published May 9, 2023

Previous 1 2 3 4 5 6 … 26 27 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

674 advisories