Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

10,711 advisories

Loading
NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause... High Unreviewed
CVE-2023-31012 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in the REST service, where an attacker may cause... Critical Unreviewed
CVE-2023-31009 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input... Critical Unreviewed
CVE-2023-25534 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause... High Unreviewed
CVE-2023-31011 was published Sep 20, 2023
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input... High Unreviewed
CVE-2023-31010 was published Sep 20, 2023
Improper Input Validation in nocodb Moderate
CVE-2023-5104 was published for nocodb (npm) Sep 21, 2023
OpenHarmony v3.2.1 and prior version has a liteos-a kernel may crash caused by mqueue undetected... Moderate Unreviewed
CVE-2023-4753 was published Sep 21, 2023
Denial of Service issue in quinn-proto High
CVE-2023-42805 was published for quinn-proto (Rust) Sep 21, 2023
QUICTester
Input verification vulnerability in the fingerprint module. Successful exploitation of this... Critical Unreviewed
CVE-2022-48605 was published Sep 25, 2023
Command injection vulnerability in the distributed file system module. Successful exploitation of... High Unreviewed
CVE-2023-41303 was published Sep 25, 2023
Vulnerability of parameters not being strictly verified in the PMS module. Successful... High Unreviewed
CVE-2023-41300 was published Sep 25, 2023
With a specially crafted WebP lossless file, libwebp may write data out of bounds to the heap. ... Unknown Unreviewed
CVE-2023-5129 was published Sep 25, 2023
OpenCart Path Traversal vulnerability High
CVE-2023-2315 was published for opencart/opencart (Composer) Sep 27, 2023
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote... High Unreviewed
CVE-2023-20231 was published Sep 27, 2023
A Vault Enterprise Sentinel Role Governing Policy created by an operator to restrict access to... Unknown Unreviewed
CVE-2023-3775 was published Sep 29, 2023
Denial of Service in pipelines affecting all versions of Gitlab EE and CE prior to 16.2.8, 16.3... High Unreviewed
CVE-2023-3917 was published Sep 29, 2023
An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior... Low Unreviewed
CVE-2023-3906 was published Sep 29, 2023
Apache Avro Java SDK vulnerable to Improper Input Validation High
CVE-2023-39410 was published for avro (Maven) Sep 29, 2023
In wlan firmware, there is a possible firmware assertion due to improper input handling. This... High Unreviewed
CVE-2023-32820 was published Oct 2, 2023
In camera middleware, there is a possible out of bounds write due to a missing input validation.... Moderate Unreviewed
CVE-2023-32827 was published Oct 2, 2023
In camera middleware, there is a possible out of bounds write due to a missing input validation.... Moderate Unreviewed
CVE-2023-32826 was published Oct 2, 2023
Incorrect data input validation vulnerability, which could allow an attacker with access to the... High Unreviewed
CVE-2023-3768 was published Oct 2, 2023
 Incorrect validation vulnerability of the data entered, allowing an attacker with access to the... Moderate Unreviewed
CVE-2023-3770 was published Oct 2, 2023
Incorrect data input validation vulnerability, which could allow an attacker with access to the... High Unreviewed
CVE-2023-3769 was published Oct 2, 2023
Memory Corruption in HLOS while registering for key provisioning notify. High Unreviewed
CVE-2023-24853 was published Oct 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database