GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
516 advisories
Filter by severity
An adversary could crash the entire device by sending a large quantity of ICMP requests if the...
High
Unreviewed
CVE-2023-40709
was published
Aug 24, 2023
An adversary could cause a continuous restart loop to the entire device by sending a large...
High
Unreviewed
CVE-2023-40710
was published
Aug 24, 2023
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability...
Moderate
Unreviewed
CVE-2022-48064
was published
Aug 22, 2023
A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801,...
High
Unreviewed
CVE-2023-39269
was published
Aug 8, 2023
A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35...
Moderate
Unreviewed
CVE-2023-38532
was published
Aug 8, 2023
Data Illusion Survey Software Solutions ngSurvey version 2.4.28 and below is vulnerable to Denial...
High
Unreviewed
CVE-2022-46485
was published
Aug 2, 2023
A missing allocation check in sftp server processing read requests may cause a NULL dereference...
Moderate
Unreviewed
CVE-2023-3603
was published
Jul 21, 2023
Wyse Management Suite versions prior to 4.0 contain a denial-of-service vulnerability. An...
Moderate
Unreviewed
CVE-2023-32481
was published
Jul 20, 2023
JavaScript preprocessing, webhooks and global scripts can cause uncontrolled CPU, memory, and...
Moderate
Unreviewed
CVE-2023-29449
was published
Jul 13, 2023
A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3.4), SIMATIC MV540 S ...
High
Unreviewed
CVE-2023-36521
was published
Jul 11, 2023
IBM Watson CP4D Data Stores 4.6.0 does not properly allocate resources without limits or...
High
Unreviewed
CVE-2023-27540
was published
Jul 10, 2023
Any request send to a Netgear Nighthawk Wifi6 Router (RAX30)'s web service containing a “Content...
High
Unreviewed
CVE-2023-28338
was published
Jul 6, 2023
A remote, unauthenticated attacker could cause a denial-of-service of PHOENIX CONTACT FL MGUARD...
High
Unreviewed
CVE-2022-3480
was published
Jul 6, 2023
A vulnerability in the XCP Authentication Service of the Cisco Unified Communications Manager IM ...
High
Unreviewed
CVE-2023-20108
was published
Jun 28, 2023
Every `named` instance configured to run as a recursive resolver maintains a cache database...
High
Unreviewed
CVE-2023-2828
was published
Jun 21, 2023
An issue was discovered jackson-databind thru 2.15.2 allows attackers to cause a denial of...
Unknown
Unreviewed
CVE-2023-35116
was published
Jun 14, 2023
A memory leak vulnerability exists in NanoMQ 0.17.2. The vulnerability is located in the file...
Moderate
Unreviewed
CVE-2023-33656
was published
May 30, 2023
Issue summary: Processing some specially crafted ASN.1 object identifiers or
data containing them...
Unknown
Unreviewed
CVE-2023-2650
was published
May 30, 2023
An issue was discovered on GL.iNet devices before 3.216. There is an arbitrary file write in...
High
Unreviewed
CVE-2023-31472
was published
May 9, 2023
IBM Counter Fraud Management for Safer Payments 6.1.0.00, 6.2.0.00, 6.3.0.00 through 6.3.1.03, 6...
High
Unreviewed
CVE-2023-27556
was published
Apr 28, 2023
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp42aac component.
Moderate
Unreviewed
CVE-2023-29575
was published
Apr 21, 2023
User-controlled operations could have allowed Denial of Service in M-Files Server before 23.4...
High
Unreviewed
CVE-2023-0383
was published
Apr 20, 2023
An Improperly Controlled Sequential Memory Allocation vulnerability in the Juniper Networks Deep...
Moderate
Unreviewed
CVE-2023-28968
was published
Apr 18, 2023
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp4info component.
Moderate
Unreviewed
CVE-2023-29573
was published
Apr 13, 2023
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions), SIMATIC CP 1243-1 ...
High
Unreviewed
CVE-2022-43768
was published
Apr 11, 2023
ProTip!
Advisories are also available from the
GraphQL API