Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,065
Maven
5,000+
npm
3,744
NuGet
668
pip
3,427
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+

80 advisories

Loading
A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an... High Unreviewed
CVE-2024-20276 was published Mar 27, 2024
A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to... Moderate Unreviewed
CVE-2024-28835 was published Mar 21, 2024
A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets... High Unreviewed
CVE-2023-3966 was published Feb 22, 2024
Malformed S2 Nonce Get Command Class packets can be sent to crash PC Controller v5.54.0 and... Moderate Unreviewed
CVE-2023-6640 was published Feb 21, 2024
Malformed Device Reset Locally Command Class packets can be sent to the controller, causing the... Moderate Unreviewed
CVE-2023-6533 was published Feb 21, 2024
Uncaught Exception in Macro Expecting Native Function to Exist Moderate
GHSA-6wr5-jmpr-mjcx was published for surrealdb (Rust) Feb 21, 2024
idofilus
Uncaught Exception Handling Parsing Errors on Line Terminators Moderate
GHSA-8xff-473h-f863 was published for surrealdb (Rust) Feb 21, 2024
Cheyenne1025
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8 are susceptible to a Denial... Moderate Unreviewed
CVE-2024-21983 was published Feb 17, 2024
StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through 11.6.0.13 are susceptible to... Moderate Unreviewed
CVE-2023-27318 was published Feb 5, 2024
Uncaught Exception in surrealdb Moderate
GHSA-jm4v-58r5-66hj was published for surrealdb (Rust) Jan 18, 2024
Tu0Laj1 jabis
A denial of service vulnerability exists in all Silicon Labs Z-Wave controller and endpoint... Moderate Unreviewed
CVE-2023-5310 was published Dec 15, 2023
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially... Moderate Unreviewed
CVE-2023-22290 was published Nov 14, 2023
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially... High Unreviewed
CVE-2023-22292 was published Nov 14, 2023
Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this... High Unreviewed
CVE-2023-46765 was published Nov 8, 2023
A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and... High Unreviewed
CVE-2023-20086 was published Nov 1, 2023
quic-go vulnerable to pointer dereference that can lead to panic High
CVE-2023-46239 was published for github.com/quic-go/quic-go (Go) Oct 30, 2023
stellar-strkey vulnerable to panic in SignedPayload::from_payload Moderate
CVE-2023-46135 was published for stellar-strkey (Rust) Oct 25, 2023
yeggor
phonenumber panics on parsing crafted RFC3966 inputs High
CVE-2023-42444 was published for phonenumber (Rust) Sep 21, 2023
sno2 gferon
NVIDIA Cumulus Linux contains a vulnerability in neighmgrd and nlmanager where an attacker on an... Moderate Unreviewed
CVE-2023-25526 was published Sep 20, 2023
Denial of Service Vulnerability in gRPC TCP Server (Posix-compatible platforms) High
CVE-2023-4785 was published for grpc (RubyGems) Sep 13, 2023
hahwul
Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola... High Unreviewed
CVE-2023-23774 was published Aug 29, 2023
json2xml Uncaught Exception vulnerability High
CVE-2022-25024 was published for json2xml (pip) Aug 23, 2023
DoS vulnerability for apps with sockets enabled High
CVE-2023-38504 was published for sails (npm) Jul 27, 2023
ThomasRinsma DominusKelvin
eashaw
In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, an improperly-formatted ... High Unreviewed
CVE-2023-22941 was published Jul 6, 2023
Vulnerability of failures to capture exceptions in the communication framework. Successful... High Unreviewed
CVE-2023-1691 was published Jul 6, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database