Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

841 advisories

Loading
An issue was discovered in KaiOS 3.0 and 3.1. The binary /system/kaios/api-daemon exposes a local... Moderate Unreviewed
CVE-2023-33293 was published May 22, 2023
OpenBlue Enterprise Manager Data Collector versions prior to 3.2.5.75 may expose sensitive... Moderate Unreviewed
CVE-2023-2025 was published May 18, 2023
Inclusion of Sensitive Information in Source Code in SICK FTMg AIR FLOW SENSOR with Partnumbers... Moderate Unreviewed
CVE-2023-23448 was published May 15, 2023
An issue found in Webroot SecureAnywhere Endpoint Protection CE 23.1 v.9.0.33.39 and before... Moderate Unreviewed
CVE-2023-29820 was published May 12, 2023
Exposure of data element to wrong session in the Intel DCM software before version 5.0.1 may... High Unreviewed
CVE-2022-40210 was published May 10, 2023
Exposure of resource to wrong sphere in BIOS firmware for some Intel(R) Processors may allow a... Moderate Unreviewed
CVE-2022-38087 was published May 10, 2023
An issue has been discovered in GitLab affecting all versions starting from 13.11 before 15.8.5,... Moderate Unreviewed
CVE-2023-0485 was published May 3, 2023
An issue has been discovered in GitLab affecting all versions starting from 10.0 before 12.9.8,... Moderate Unreviewed
CVE-2023-2069 was published May 3, 2023
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR... High Unreviewed
CVE-2023-26243 was published Apr 27, 2023
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.4 allows local... Moderate Unreviewed
CVE-2023-22307 was published Apr 18, 2023
An issue was discovered in the VisualEditor extension in MediaWiki before 1.31.13, and 1.32.x... Moderate Unreviewed
CVE-2021-30153 was published Apr 15, 2023
KYOCERA Mobile Print' v3.2.0.230119 and earlier, 'UTAX/TA MobilePrint' v3.2.0.230119 and earlier,... Moderate Unreviewed
CVE-2023-25954 was published Apr 13, 2023
Aten PE8108 2.4.232 is vulnerable to Incorrect Access Control. Restricted users have access to... High Unreviewed
CVE-2023-25409 was published Apr 11, 2023
In telecom service, there is a missing permission check. This could lead to local denial of... High Unreviewed
CVE-2022-47338 was published Apr 11, 2023
Use of hard-coded credentials vulnerability in Buffalo network devices allows an attacker to... High Unreviewed
CVE-2023-26588 was published Apr 11, 2023
An information disclosure vulnerability exists in SAP Landscape Management - version 3.0,... High Unreviewed
CVE-2023-26458 was published Apr 11, 2023
In multiple products of CODESYS v3 in multiple versions a remote low privileged user could... High Unreviewed
CVE-2022-4224 was published Mar 23, 2023
Mattermost fails to check the "Show Full Name" setting when rendering the result for the /plugins... Moderate Unreviewed
CVE-2023-1562 was published Mar 22, 2023
An issue found in DepositGame v.1.0 allows an attacker to gain sensitive information via the... Critical Unreviewed
CVE-2020-22647 was published Mar 16, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-24906 was published Mar 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-24870 was published Mar 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-24863 was published Mar 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-24866 was published Mar 14, 2023
Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-23409 was published Mar 14, 2023
Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-23394 was published Mar 14, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database