Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,004
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

10,719 advisories

Loading
Incorrect data input validation vulnerability, which could allow an attacker with access to the... High Unreviewed
CVE-2023-3768 was published Oct 2, 2023
 Incorrect validation vulnerability of the data entered, allowing an attacker with access to the... Moderate Unreviewed
CVE-2023-3770 was published Oct 2, 2023
Incorrect data input validation vulnerability, which could allow an attacker with access to the... High Unreviewed
CVE-2023-3769 was published Oct 2, 2023
Memory Corruption in HLOS while registering for key provisioning notify. High Unreviewed
CVE-2023-24853 was published Oct 3, 2023
Weak configuration in Automotive while VM is processing a listener request from TEE. High Unreviewed
CVE-2023-22382 was published Oct 3, 2023
JFrog Artifactory prior to version 7.66.0 is vulnerable to specific endpoint abuse with a... Moderate Unreviewed
CVE-2023-42508 was published Oct 3, 2023
Improper input validation vulnerability in Evaluator prior to SMR Oct-2023 Release 1 allows local... High Unreviewed
CVE-2023-30692 was published Oct 4, 2023
Improper input validation vulnerability in Duo prior to SMR Oct-2023 Release 1 allows local... High Unreviewed
CVE-2023-30690 was published Oct 4, 2023
Logic error in package installation via debugger command prior to SMR Oct-2023 Release 1 allows... Moderate Unreviewed
CVE-2023-30731 was published Oct 4, 2023
Improper access control vulnerability in SecSettings prior to SMR Oct-2023 Release 1 allows... High Unreviewed
CVE-2023-30727 was published Oct 4, 2023
An improper input validation in UEFI Firmware prior to Firmware update Oct-2023 Release in Galaxy... High Unreviewed
CVE-2023-30738 was published Oct 4, 2023
Atlassian has been made aware of an issue reported by a handful of customers where external... Critical Unreviewed
CVE-2023-22515 was published Oct 4, 2023
Atos Unify OpenScape Session Border Controller through V10 R3.01.03 allows execution of... Critical Unreviewed
CVE-2023-36619 was published Oct 4, 2023
An improper input validation flaw was found in the eBPF subsystem in the Linux kernel. The issue... High Unreviewed
CVE-2023-39191 was published Oct 4, 2023
Dell SmartFabric Storage Software v1.4 (and earlier) contains an Improper Input Validation... Moderate Unreviewed
CVE-2023-43073 was published Oct 5, 2023
Dell SmartFabric Storage Software version 1.3 and lower contain an improper input validation... Critical Unreviewed
CVE-2023-32485 was published Oct 5, 2023
Microsoft Common Data Model SDK Denial of Service Vulnerability Moderate
CVE-2023-36566 was published for Microsoft.CommonDataModel.ObjectModel (Maven) Oct 10, 2023
degant
Microsoft WordPad Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-36563 was published Oct 10, 2023
Active Template Library Denial of Service Vulnerability High Unreviewed
CVE-2023-36585 was published Oct 10, 2023
Apache Tomcat Improper Input Validation vulnerability Moderate
CVE-2023-45648 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Oct 10, 2023
biehl1 mpihelgas
Out-of-bounds access vulnerability in the audio module.Successful exploitation of this... Moderate Unreviewed
CVE-2023-44110 was published Oct 11, 2023
Out-of-bounds read vulnerability in the Bluetooth module.Successful exploitation of this... High Unreviewed
CVE-2023-44103 was published Oct 11, 2023
A stored XSS has been found in the Zabbix web application in the Maps element if a URL field is... Moderate Unreviewed
CVE-2023-32721 was published Oct 12, 2023
An Improper Validation of Syntactic Correctness of Input vulnerability in Routing Protocol... Moderate Unreviewed
CVE-2023-44204 was published Oct 13, 2023
An Improper Input Validation vulnerability in the Packet Forwarding Engine of Juniper Networks... High Unreviewed
CVE-2023-44192 was published Oct 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database