Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

516 advisories

Loading
An adversary could crash the entire device by sending a large quantity of ICMP requests if the... High Unreviewed
CVE-2023-40709 was published Aug 24, 2023
An adversary could cause a continuous restart loop to the entire device by sending a large... High Unreviewed
CVE-2023-40710 was published Aug 24, 2023
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability... Moderate Unreviewed
CVE-2022-48064 was published Aug 22, 2023
A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801,... High Unreviewed
CVE-2023-39269 was published Aug 8, 2023
A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35... Moderate Unreviewed
CVE-2023-38532 was published Aug 8, 2023
Data Illusion Survey Software Solutions ngSurvey version 2.4.28 and below is vulnerable to Denial... High Unreviewed
CVE-2022-46485 was published Aug 2, 2023
A missing allocation check in sftp server processing read requests may cause a NULL dereference... Moderate Unreviewed
CVE-2023-3603 was published Jul 21, 2023
Wyse Management Suite versions prior to 4.0 contain a denial-of-service vulnerability. An... Moderate Unreviewed
CVE-2023-32481 was published Jul 20, 2023
JavaScript preprocessing, webhooks and global scripts can cause uncontrolled CPU, memory, and... Moderate Unreviewed
CVE-2023-29449 was published Jul 13, 2023
A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3.4), SIMATIC MV540 S ... High Unreviewed
CVE-2023-36521 was published Jul 11, 2023
IBM Watson CP4D Data Stores 4.6.0 does not properly allocate resources without limits or... High Unreviewed
CVE-2023-27540 was published Jul 10, 2023
Any request send to a Netgear Nighthawk Wifi6 Router (RAX30)'s web service containing a “Content... High Unreviewed
CVE-2023-28338 was published Jul 6, 2023
A remote, unauthenticated attacker could cause a denial-of-service of PHOENIX CONTACT FL MGUARD... High Unreviewed
CVE-2022-3480 was published Jul 6, 2023
A vulnerability in the XCP Authentication Service of the Cisco Unified Communications Manager IM ... High Unreviewed
CVE-2023-20108 was published Jun 28, 2023
Every `named` instance configured to run as a recursive resolver maintains a cache database... High Unreviewed
CVE-2023-2828 was published Jun 21, 2023
An issue was discovered jackson-databind thru 2.15.2 allows attackers to cause a denial of... Unknown Unreviewed
CVE-2023-35116 was published Jun 14, 2023
A memory leak vulnerability exists in NanoMQ 0.17.2. The vulnerability is located in the file... Moderate Unreviewed
CVE-2023-33656 was published May 30, 2023
Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them... Unknown Unreviewed
CVE-2023-2650 was published May 30, 2023
An issue was discovered on GL.iNet devices before 3.216. There is an arbitrary file write in... High Unreviewed
CVE-2023-31472 was published May 9, 2023
IBM Counter Fraud Management for Safer Payments 6.1.0.00, 6.2.0.00, 6.3.0.00 through 6.3.1.03, 6... High Unreviewed
CVE-2023-27556 was published Apr 28, 2023
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp42aac component. Moderate Unreviewed
CVE-2023-29575 was published Apr 21, 2023
User-controlled operations could have allowed Denial of Service in M-Files Server before 23.4... High Unreviewed
CVE-2023-0383 was published Apr 20, 2023
An Improperly Controlled Sequential Memory Allocation vulnerability in the Juniper Networks Deep... Moderate Unreviewed
CVE-2023-28968 was published Apr 18, 2023
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp4info component. Moderate Unreviewed
CVE-2023-29573 was published Apr 13, 2023
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions), SIMATIC CP 1243-1 ... High Unreviewed
CVE-2022-43768 was published Apr 11, 2023
ProTip! Advisories are also available from the GraphQL API