Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,984
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

415 advisories

Loading
No exception handling vulnerability which revealed sensitive or excessive information to users. High Unreviewed
CVE-2023-23837 was published Apr 25, 2023
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware,... High Unreviewed
CVE-2023-0204 was published Apr 22, 2023
XWiki Platform vulnerable to page render failure due to broken translations Moderate
CVE-2023-29520 was published for org.xwiki.platform:xwiki-platform-localization-source-wiki (Maven) Apr 20, 2023
An issue was discovered in ONOS 2.5.1. In IntentManager, the install-requested intent (which... High Unreviewed
CVE-2021-38363 was published Apr 20, 2023
An Improper Check or Handling of Exceptional Conditions vulnerability in packet processing on the... Moderate Unreviewed
CVE-2023-28970 was published Apr 18, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed
CVE-2022-23121 was published Mar 28, 2023
A potential memory vulnerability due to insufficient input validation in PDFXEditCore.x64.dll in... High Unreviewed
CVE-2023-24308 was published Mar 28, 2023
Comrak AST node data is not validated (GHSL-2023-049) Moderate
CVE-2023-28631 was published for comrak (Rust) Mar 28, 2023
darakian
In multiple functions of SnoozeHelper.java, there is a possible failure to persist settings due... High Unreviewed
CVE-2023-20993 was published Mar 24, 2023
Cilium eBPF filters may be temporarily removed during agent restart Moderate
CVE-2023-27595 was published for github.com/cilium/cilium (Go) Mar 17, 2023
ldelossa ti-mo
aanm
An Improper Handling of Exceptional Conditions vulnerability in obs-service-go_modules of... Moderate Unreviewed
CVE-2022-45155 was published Mar 15, 2023
xwiki vulnerable to Improper Handling of Exceptional Conditions Moderate
CVE-2023-26479 was published for org.xwiki.platform:xwiki-platform-rendering-parser (Maven) Mar 3, 2023
Improper Handling of Parameters vulnerability in BG-TEK COSLAT Firewall allows Remote Code... Critical Unreviewed
CVE-2021-4105 was published Feb 24, 2023
MISP before 2.4.166 unsafely allows users to use the order parameter, related to app/Model... Critical Unreviewed
CVE-2022-48329 was published Feb 20, 2023
app/Controller/Component/IndexFilterComponent.php in MISP before 2.4.167 mishandles... Critical Unreviewed
CVE-2022-48328 was published Feb 20, 2023
Improper conditions check in the Intel(R) SGX SDK software may allow a privileged user to... Moderate Unreviewed
CVE-2022-26509 was published Feb 16, 2023
Uncaught exception in webserver for the Integrated BMC in some Intel(R) platforms before versions... Moderate Unreviewed
CVE-2022-29493 was published Feb 16, 2023
Uncaught exception in the Intel(R) Iris(R) Xe MAX drivers for Windows before version 100.0.5.1436... Moderate Unreviewed
CVE-2022-34849 was published Feb 16, 2023
Uncaught exception in the FCS Server software maintained by Intel before version 1.1.79.3 may... Moderate Unreviewed
CVE-2022-36287 was published Feb 16, 2023
A vulnerability in class-of-service (CoS) queue management in Juniper Networks Junos OS on the... High Unreviewed
CVE-2023-22391 was published Jan 13, 2023
An improper handling of exceptional conditions vulnerability in Trend Micro Apex One and Apex One... High Unreviewed
CVE-2022-44652 was published Dec 12, 2022
Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in... Low Unreviewed
CVE-2022-39912 was published Dec 8, 2022
go-merkledag's ProtoNode may be modified such that common method calls may panic High
CVE-2022-23495 was published for github.com/ipfs/go-merkledag (Go) Dec 8, 2022
mrd0ll4r
Yauaa vulnerable to ArrayIndexOutOfBoundsException triggered by a crafted Sec-Ch-Ua-Full-Version-List High
CVE-2022-23496 was published for nl.basjes.parse.useragent:yauaa (Maven) Dec 8, 2022
Redmine 5.x before 5.0.4 allows downloading of file attachments of any Issue or any Wiki page due... High Unreviewed
CVE-2022-44030 was published Dec 7, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database