GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,727
Erlang
29
GitHub Actions
16
Go
1,709
Maven
4,946
npm
3,474
NuGet
605
pip
3,000
Pub
10
RubyGems
828
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
24 advisories
Filter by severity
Inappropriate implementation in Extensions API in Google Chrome prior to 118.0.5993.70 allowed an...
Moderate
Unreviewed
CVE-2023-5479
was published
Oct 12, 2023
Quarkus HTTP vulnerable to incorrect evaluation of permissions
High
CVE-2023-4853
was published
for
io.quarkus:quarkus-csrf-reactive
(Maven)
Sep 20, 2023
NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability...
High
Unreviewed
CVE-2023-25519
was published
Sep 14, 2023
Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96...
Moderate
Unreviewed
CVE-2023-4361
was published
Aug 15, 2023
Heap buffer overflow in ANGLE in Google Chrome prior to 116.0.5845.96 allowed a remote attacker...
High
Unreviewed
CVE-2023-4353
was published
Aug 15, 2023
Use after free in DNS in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to...
High
Unreviewed
CVE-2023-4358
was published
Aug 15, 2023
Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed...
High
Unreviewed
CVE-2023-4357
was published
Aug 15, 2023
Inappropriate implementation in Color in Google Chrome prior to 116.0.5845.96 allowed a remote...
Moderate
Unreviewed
CVE-2023-4360
was published
Aug 15, 2023
Inappropriate implementation in Permission Prompts in Google Chrome prior to 116.0.5845.96...
Moderate
Unreviewed
CVE-2023-4364
was published
Aug 15, 2023
Use after free in Device Trust Connectors in Google Chrome prior to 116.0.5845.96 allowed a...
High
Unreviewed
CVE-2023-4349
was published
Aug 15, 2023
Inappropriate implementation in Fullscreen in Google Chrome prior to 116.0.5845.96 allowed a...
Moderate
Unreviewed
CVE-2023-4365
was published
Aug 15, 2023
Inappropriate implementation in WebShare in Google Chrome on Android prior to 116.0.5845.96...
Moderate
Unreviewed
CVE-2023-4363
was published
Aug 15, 2023
Insufficient policy enforcement in Extensions API in Google Chrome prior to 116.0.5845.96 allowed...
Moderate
Unreviewed
CVE-2023-4367
was published
Aug 15, 2023
Insufficient policy enforcement in Extensions API in Google Chrome prior to 116.0.5845.96 allowed...
High
Unreviewed
CVE-2023-4368
was published
Aug 15, 2023
Type confusion in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to...
High
Unreviewed
CVE-2023-4352
was published
Aug 15, 2023
Inappropriate implementation in App Launcher in Google Chrome on iOS prior to 116.0.5845.96...
Moderate
Unreviewed
CVE-2023-4359
was published
Aug 15, 2023
Use after free in Network in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who...
High
Unreviewed
CVE-2023-4351
was published
Aug 15, 2023
Use after free in Audio in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who has...
High
Unreviewed
CVE-2023-4356
was published
Aug 15, 2023
Inappropriate implementation in Fullscreen in Google Chrome on Android prior to 116.0.5845.96...
Moderate
Unreviewed
CVE-2023-4350
was published
Aug 15, 2023
Use after free in Extensions in Google Chrome prior to 116.0.5845.96 allowed an attacker who...
High
Unreviewed
CVE-2023-4366
was published
Aug 15, 2023
Heap buffer overflow in Skia in Google Chrome prior to 116.0.5845.96 allowed a remote attacker...
High
Unreviewed
CVE-2023-4354
was published
Aug 15, 2023
Heap buffer overflow in Mojom IDL in Google Chrome prior to 116.0.5845.96 allowed a remote...
High
Unreviewed
CVE-2023-4362
was published
Aug 15, 2023
Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote...
High
Unreviewed
CVE-2023-4355
was published
Aug 15, 2023
Use after free in Offline in Google Chrome on Android prior to 116.0.5845.96 allowed a remote...
High
Unreviewed
CVE-2023-2312
was published
Aug 15, 2023
ProTip!
Advisories are also available from the
GraphQL API