GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,198
Composer 4,343
Erlang 31
GitHub Actions 22
Go 2,107
Maven 5,283
npm 3,764
NuGet 679
pip 3,452
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,211

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

93 advisories

Filter by severity

Sort by

Least recently updated

In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed

CVE-2023-20707 was published May 16, 2023

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS... Moderate Unreviewed

CVE-2023-27941 was published May 8, 2023

Multiple validation issues were addressed with improved input sanitization. This issue is fixed... Moderate Unreviewed

CVE-2023-27961 was published May 8, 2023

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer... Moderate Unreviewed

CVE-2023-0194 was published Apr 1, 2023

NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer driver... Low Unreviewed

CVE-2023-0195 was published Apr 1, 2023

A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the... High Unreviewed

CVE-2022-4904 was published Mar 7, 2023

For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling... High Unreviewed

CVE-2021-28510 was published Jan 26, 2023

An Unchecked Input for Loop Condition vulnerability in a NAT library of Juniper Networks Junos OS... Moderate Unreviewed

CVE-2023-22409 was published Jan 13, 2023

The demon image annotation plugin for WordPress is vulnerable to improper input validation in... High Unreviewed

CVE-2022-4171 was published Dec 13, 2022

Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated... Low Unreviewed

CVE-2022-46143 was published Dec 13, 2022

A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V3.0.1),... High Unreviewed

CVE-2021-44693 was published Dec 13, 2022

Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA... Moderate Unreviewed

CVE-2022-20687 was published Dec 12, 2022

A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Adaptive... Moderate Unreviewed

CVE-2022-20691 was published Dec 12, 2022

Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series... High Unreviewed

CVE-2022-20690 was published Dec 12, 2022

A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Analog... Moderate Unreviewed

CVE-2022-20688 was published Dec 12, 2022

Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA... Moderate Unreviewed

CVE-2022-20686 was published Dec 12, 2022

Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series... High Unreviewed

CVE-2022-20689 was published Dec 12, 2022

Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and... Moderate Unreviewed

CVE-2022-26047 was published Nov 11, 2022

DexLoader function get_stringidx_fromdex() in Redex prior to commit 3b44c64 can load an out of... Critical Unreviewed

CVE-2022-36938 was published Nov 11, 2022

In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site... Moderate Unreviewed

CVE-2022-31629 was published Sep 29, 2022

Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP... High Unreviewed

CVE-2022-2277 was published Sep 15, 2022

libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds... High Unreviewed

CVE-2022-2868 was published Aug 18, 2022

NHI’s health insurance web service component has insufficient validation for input string length,... High Unreviewed

CVE-2021-45918 was published Jun 21, 2022

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed

CVE-2021-31346 was published May 24, 2022

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed

CVE-2021-31345 was published May 24, 2022

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

93 advisories