GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
30 advisories
Filter by severity
An Improper Validation of Specified Quantity in Input vulnerability in the routing protocol...
Moderate
Unreviewed
CVE-2022-22166
was published
Jan 20, 2022
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site...
Moderate
Unreviewed
CVE-2022-31629
was published
Sep 29, 2022
Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA...
Moderate
Unreviewed
CVE-2022-20687
was published
Dec 12, 2022
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Adaptive...
Moderate
Unreviewed
CVE-2022-20691
was published
Dec 12, 2022
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Analog...
Moderate
Unreviewed
CVE-2022-20688
was published
Dec 12, 2022
Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA...
Moderate
Unreviewed
CVE-2022-20686
was published
Dec 12, 2022
An Unchecked Input for Loop Condition vulnerability in a NAT library of Juniper Networks Junos OS...
Moderate
Unreviewed
CVE-2023-22409
was published
Jan 13, 2023
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer...
Moderate
Unreviewed
CVE-2023-0194
was published
Apr 1, 2023
A vulnerability was found in SourceCodester Card Holder Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2023-4439
was published
Aug 21, 2023
An Improper Validation of Specified Quantity in Input vulnerability in the Layer-2 control...
Moderate
Unreviewed
CVE-2023-36839
was published
Oct 13, 2023
A vulnerability exists in the input validation of the GOOSE
messages where out of range values...
Moderate
Unreviewed
CVE-2023-4518
was published
Dec 1, 2023
Improper input validation in some Zoom clients may allow an authenticated user to conduct a...
Moderate
Unreviewed
CVE-2024-24690
was published
Feb 14, 2024
In SecurityCommand message after as security has been actived., there is a possible improper...
Moderate
Unreviewed
CVE-2023-52343
was published
Apr 8, 2024
A vulnerability was reported
in a system recovery bootloader that was part of the Lenovo...
Moderate
Unreviewed
CVE-2024-23593
was published
Apr 15, 2024
A key used in logging.json does not follow the least privilege principle by default and is...
Moderate
Unreviewed
CVE-2024-3185
was published
Apr 23, 2024
An improper access control was identified in the Identity Security Cloud (ISC) message server API...
Moderate
Unreviewed
CVE-2024-3317
was published
May 15, 2024
Improper Validation of Specified Quantity in Input vulnerability in The Events Calendar BookIt...
Moderate
Unreviewed
CVE-2024-24715
was published
May 17, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where...
Moderate
Unreviewed
CVE-2024-31957
was published
Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330...
Moderate
Unreviewed
CVE-2024-27362
was published
Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 850, Exynos 1080, Exynos 2100,...
Moderate
Unreviewed
CVE-2024-27360
was published
Jul 9, 2024
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows...
Moderate
Unreviewed
CVE-2024-6768
was published
Aug 12, 2024
Improper input validation in Power Management Firmware (PMFW) may allow an attacker with...
Moderate
Unreviewed
CVE-2023-31310
was published
Aug 13, 2024
NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a...
Moderate
Unreviewed
CVE-2024-0111
was published
Aug 31, 2024
A vulnerability classified as problematic was found in SourceCodester Food Ordering Management...
Moderate
Unreviewed
CVE-2024-8558
was published
Sep 7, 2024
The Eaton Foreseer software provides multiple customizable input fields for the users to...
Moderate
Unreviewed
CVE-2024-31416
was published
Sep 13, 2024
ProTip!
Advisories are also available from the
GraphQL API