Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,044
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

355 advisories

Loading
Shopware improper mail validation vulnerability Moderate
CVE-2023-34099 was published for shopware/shopware (Composer) Jun 28, 2023
VirtualSquare picoTCP (aka PicoTCP-NG) through 2.1 does not properly check whether header sizes... High Unreviewed
CVE-2023-35849 was published Jun 19, 2023
A lack of exception handling in the Volkswagen Discover Media Infotainment System Software... Moderate Unreviewed
CVE-2023-34733 was published Jun 16, 2023
In several methods of JobStore.java, uncaught exceptions in job map parsing could lead to local... Moderate Unreviewed
CVE-2023-21137 was published Jun 15, 2023
ink! vulnerable to incorrect decoding of storage value when using `DelegateCall` Moderate
CVE-2023-34449 was published for ink (Rust) Jun 14, 2023
A mishandled security check when creating a WebSocket in a WebWorker caused the Content Security... Moderate Unreviewed
CVE-2023-23602 was published Jun 2, 2023
In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and Splunk Cloud Platform versions... Moderate Unreviewed
CVE-2023-32716 was published Jun 1, 2023
Insufficient validation when decoding a Socket.IO packet Moderate
CVE-2023-32695 was published for socket.io-parser (npm) May 23, 2023
rafax00 darrachequesne
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could... High Unreviewed
CVE-2023-25619 was published Apr 19, 2023
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that... Moderate Unreviewed
CVE-2023-25620 was published Apr 19, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the bbe-smgd of Juniper... Moderate Unreviewed
CVE-2023-28974 was published Apr 18, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper... Moderate Unreviewed
CVE-2023-28979 was published Apr 18, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding... High Unreviewed
CVE-2023-28976 was published Apr 18, 2023
An Unexpected Status Code or Return Value vulnerability in the kernel of Juniper Networks Junos... Moderate Unreviewed
CVE-2023-28975 was published Apr 18, 2023
An Improper Check or Handling of Exceptional Conditions within the storm control feature of... High Unreviewed
CVE-2023-28965 was published Apr 18, 2023
libiec61850 v1.5.1 was discovered to contain a segmentation violation via the function... High Unreviewed
CVE-2023-27772 was published Apr 13, 2023
Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol... Moderate Unreviewed
CVE-2022-3192 was published Mar 31, 2023
HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0... High Unreviewed
CVE-2021-32846 was published Feb 18, 2023
Improper conditions check in the Intel(R) SUR software before version 2.4.8902 may allow an... High Unreviewed
CVE-2022-30692 was published Feb 16, 2023
Improper conditions check in the Open CAS software maintained by Intel(R) before version 22.3.1... Moderate Unreviewed
CVE-2022-29523 was published Feb 16, 2023
Improper condition check in some Intel(R) SPS firmware before version SPS_E3_06.00.03.300.0 may... Moderate Unreviewed
CVE-2022-36794 was published Feb 16, 2023
IPFS go-bitfield vulnerable to DoS via malformed size arguments Moderate
CVE-2023-23626 was published for github.com/ipfs/go-bitfield (Go) Feb 10, 2023
Jorropo
Cipher.update_into can corrupt memory if passed an immutable python object as the outbuf Moderate
CVE-2023-23931 was published for cryptography (pip) Feb 7, 2023
An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50(ABTG.0... Moderate Unreviewed
CVE-2022-45854 was published Feb 7, 2023
Froxlor contains Unchecked Error Condition Moderate
CVE-2023-0572 was published for froxlor/froxlor (Composer) Jan 30, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database