GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,948
Erlang
29
GitHub Actions
16
Go
1,739
Maven
4,967
npm
3,504
NuGet
607
pip
3,064
Pub
10
RubyGems
832
Rust
779
Swift
34
Unreviewed advisories
All unreviewed
5,000+
108,559 advisories
Filter by severity
A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 single...
Moderate
Unreviewed
CVE-2023-20264
was published
Nov 1, 2023
A vulnerability in the IP geolocation rules of Snort 3 could allow an unauthenticated, remote...
Moderate
Unreviewed
CVE-2023-20267
was published
Nov 1, 2023
Under certain conditions, a low privileged attacker could load a specially crafted file during...
Moderate
Unreviewed
CVE-2023-5847
was published
Nov 1, 2023
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management...
Moderate
Unreviewed
CVE-2023-20074
was published
Nov 1, 2023
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management...
Moderate
Unreviewed
CVE-2023-20005
was published
Nov 1, 2023
A vulnerability in the interaction between the Server Message Block (SMB) protocol preprocessor...
Moderate
Unreviewed
CVE-2023-20270
was published
Nov 1, 2023
Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance ...
Moderate
Unreviewed
CVE-2023-20245
was published
Nov 1, 2023
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management...
Moderate
Unreviewed
CVE-2023-20206
was published
Nov 1, 2023
A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA)...
Moderate
Unreviewed
CVE-2023-20042
was published
Nov 1, 2023
A vulnerability in an API of the Web Bridge feature of Cisco Meeting Server could allow an...
Moderate
Unreviewed
CVE-2023-20255
was published
Nov 1, 2023
A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated,...
Moderate
Unreviewed
CVE-2023-20213
was published
Nov 1, 2023
A vulnerability in the SSL/TLS certificate handling of Snort 3 Detection Engine integration with...
Moderate
Unreviewed
CVE-2023-20031
was published
Nov 1, 2023
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could...
Moderate
Unreviewed
CVE-2023-20071
was published
Nov 1, 2023
A vulnerability in a specific Cisco ISE CLI command could allow an authenticated, local attacker...
Moderate
Unreviewed
CVE-2023-20170
was published
Nov 1, 2023
Two vulnerabilities in Cisco ISE could allow an authenticated, remote attacker to upload...
Moderate
Unreviewed
CVE-2023-20196
was published
Nov 1, 2023
A vulnerability in the remote access SSL VPN feature of Cisco Adaptive Security Appliance (ASA)...
Moderate
Unreviewed
CVE-2023-20247
was published
Nov 1, 2023
Improper access control in Report log filters feature in Devolutions Server 2023.2.10.0 and...
Moderate
Unreviewed
CVE-2023-5358
was published
Nov 1, 2023
The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive...
Moderate
Unreviewed
CVE-2023-33228
was published
Nov 1, 2023
There is a Cross Site Scripting (XSS) vulnerability in the choose_style_tree.do interface of...
Moderate
Unreviewed
CVE-2023-46911
was published
Nov 1, 2023
Multiple Cisco products are affected by a vulnerability in Snort access control policies that...
Moderate
Unreviewed
CVE-2023-20246
was published
Nov 1, 2023
A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch...
Moderate
Unreviewed
CVE-2023-5625
was published
Nov 1, 2023
A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them ...
Moderate
Unreviewed
CVE-2023-4452
was published
Nov 1, 2023
GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in gf_isom_use_compact_size...
Moderate
Unreviewed
CVE-2023-46927
was published
Nov 1, 2023
GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gf_media_change_pl ...
Moderate
Unreviewed
CVE-2023-46928
was published
Nov 1, 2023
GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in...
Moderate
Unreviewed
CVE-2023-46930
was published
Nov 1, 2023
ProTip!
Advisories are also available from the
GraphQL API