GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
35 advisories
Filter by severity
A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP...
High
Unreviewed
CVE-2019-6575
was published
May 13, 2022
A vulnerability has been identified in SIMATIC ET 200SP Open Controller (incl. SIPLUS variants) ...
High
Unreviewed
CVE-2020-15796
was published
May 24, 2022
A vulnerability in the processing of malformed Common Industrial Protocol (CIP) packets that are...
High
Unreviewed
CVE-2022-20919
was published
Oct 1, 2022
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially...
Moderate
Unreviewed
CVE-2023-22290
was published
Nov 14, 2023
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially...
High
Unreviewed
CVE-2023-22292
was published
Nov 14, 2023
In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, an improperly-formatted ...
High
Unreviewed
CVE-2023-22941
was published
Jul 6, 2023
A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and...
High
Unreviewed
CVE-2023-20086
was published
Nov 1, 2023
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8
are susceptible to a Denial...
Moderate
Unreviewed
CVE-2024-21983
was published
Feb 17, 2024
StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through
11.6.0.13 are susceptible to...
Moderate
Unreviewed
CVE-2023-27318
was published
Feb 5, 2024
A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets...
High
Unreviewed
CVE-2023-3966
was published
Feb 22, 2024
A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an...
High
Unreviewed
CVE-2024-20276
was published
Mar 27, 2024
It was found in AMQ Online before 1.5.2 that injecting an invalid field to a user's AddressSpace...
Moderate
Unreviewed
CVE-2020-14348
was published
May 24, 2022
Vulnerability of failures to capture exceptions in the communication framework. Successful...
High
Unreviewed
CVE-2023-1691
was published
Jul 6, 2023
NVIDIA Cumulus Linux contains a vulnerability in neighmgrd and nlmanager where an attacker on an...
Moderate
Unreviewed
CVE-2023-25526
was published
Sep 20, 2023
Denial of service (DoS) vulnerability in the AMS module
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-32995
was published
May 14, 2024
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 integration...
Moderate
Unreviewed
CVE-2024-31904
was published
May 22, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could...
Moderate
Unreviewed
CVE-2024-20048
was published
Apr 1, 2024
badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on...
High
Unreviewed
CVE-2023-5038
was published
Jun 25, 2024
Vulnerability of uncaught exceptions in the Graphics module
Impact: Successful exploitation of...
Critical
Unreviewed
CVE-2024-42037
was published
Aug 8, 2024
In modem-ps-nas-ngmm, there is a possible undefined behavior due to incorrect error handling....
Unknown
Unreviewed
CVE-2023-52342
was published
Apr 8, 2024
Unchecked parameter value in M-Files Server in versions before 23.6.12695.3 (excluding 23.2 SR2...
High
Unreviewed
CVE-2023-3405
was published
Jun 27, 2023
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated...
Moderate
Unreviewed
CVE-2024-33848
was published
Sep 16, 2024
A denial of service vulnerability exists in all Silicon Labs Z-Wave controller and endpoint...
Moderate
Unreviewed
CVE-2023-5310
was published
Dec 15, 2023
Malformed S2 Nonce Get Command Class packets can be sent to crash PC Controller v5.54.0 and...
Moderate
Unreviewed
CVE-2023-6640
was published
Feb 21, 2024
Malformed Device Reset Locally Command Class packets can be sent to the controller, causing the...
Moderate
Unreviewed
CVE-2023-6533
was published
Feb 21, 2024
ProTip!
Advisories are also available from the
GraphQL API