GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
184 advisories
Filter by severity
VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has...
High
Unreviewed
CVE-2023-34058
was published
Oct 27, 2023
browserify-sign upper bound check issue in `dsaVerify` leads to a signature forgery attack
High
CVE-2023-46234
was published
for
browserify-sign
(npm)
Oct 26, 2023
Improper Verification of Cryptographic Signature vulnerability in Zscaler Client Connector on...
High
Unreviewed
CVE-2023-28796
was published
Oct 23, 2023
free5GC udm vulnerable to Invalid Curve Attack
High
CVE-2023-46324
was published
for
github.com/free5gc/udm
(Go)
Oct 23, 2023
The Texas Instruments OMAP L138 (secure variants) trusted execution environment (TEE) performs an...
High
Unreviewed
CVE-2022-25333
was published
Oct 19, 2023
The BIG-IP Edge Client Installer on macOS does not follow best practices for elevating...
High
Unreviewed
CVE-2023-43611
was published
Oct 10, 2023
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The QMS.Mobile...
High
Unreviewed
CVE-2023-40727
was published
Sep 14, 2023
A vulnerability in Cisco IOS XR Software image verification checks could allow an authenticated,...
High
Unreviewed
CVE-2023-20135
was published
Sep 13, 2023
A vulnerability in the iPXE boot function of Cisco IOS XR software could allow an authenticated,...
High
Unreviewed
CVE-2023-20236
was published
Sep 13, 2023
Local privilege escalation due to unrestricted loading of unsigned libraries. The following...
High
Unreviewed
CVE-2023-41744
was published
Aug 31, 2023
A vulnerability in Cisco Emergency Responder, Cisco Unified Communications Manager (Unified CM),...
High
Unreviewed
CVE-2023-20266
was published
Aug 30, 2023
Motorola MBTS Site Controller fails to check firmware update authenticity. The Motorola MBTS Site...
High
Unreviewed
CVE-2023-23772
was published
Aug 29, 2023
Motorola EBTS/MBTS Base Radio fails to check firmware authenticity. The Motorola MBTS Base Radio...
High
Unreviewed
CVE-2023-23773
was published
Aug 29, 2023
Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this...
High
Unreviewed
CVE-2023-39392
was published
Aug 13, 2023
Vulnerability of insecure signatures in the ServiceWifiResources module. Successful exploitation...
High
Unreviewed
CVE-2023-39393
was published
Aug 13, 2023
Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows...
High
Unreviewed
CVE-2023-39211
was published
Aug 9, 2023
The BIG-IP Edge Client Installer on macOS does not follow best practices for elevating...
High
Unreviewed
CVE-2023-38418
was published
Aug 2, 2023
Dell PowerStore versions prior to 3.5 contain an improper verification of cryptographic...
High
Unreviewed
CVE-2023-32449
was published
Jun 22, 2023
Improper privilege management in Zoom for Windows, Zoom Rooms for Windows, and Zoom VDI for...
High
Unreviewed
CVE-2023-34120
was published
Jun 13, 2023
Zoom for Windows clients prior to 5.13.5 contain an improper verification of cryptographic...
High
Unreviewed
CVE-2023-28602
was published
Jun 13, 2023
notation-go's verification bypass can cause users to verify the wrong artifact
High
CVE-2023-33959
was published
for
github.com/notaryproject/notation-go
(Go)
Jun 6, 2023
Local privilege escalation due to unrestricted loading of unsigned libraries. The following...
High
Unreviewed
CVE-2022-4418
was published
May 18, 2023
DELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature...
High
Unreviewed
CVE-2023-25934
was published
May 4, 2023
In the Android operating system, there is a possible way to replace a boot partition due to...
High
Unreviewed
CVE-2023-20940
was published
Feb 28, 2023
Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper...
High
Unreviewed
CVE-2022-34459
was published
Feb 1, 2023
ProTip!
Advisories are also available from the
GraphQL API