Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,440
Erlang
29
GitHub Actions
16
Go
1,667
Maven
4,928
npm
3,457
NuGet
595
pip
2,874
Pub
10
RubyGems
823
Rust
766
Swift
34
Unreviewed advisories
All unreviewed
5,000+

88 advisories

An unchecked return value vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2023-50359 was published Feb 2, 2024
An unchecked return value in TLS handshake code could have caused a potentially exploitable crash... High Unreviewed
CVE-2024-0743 was published Jan 23, 2024
A flaw was found in the libssh implements abstract layer for message digest (MD) operations... Low Unreviewed
CVE-2023-6918 was published Dec 19, 2023
A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All versions < V4.5), SCALANCE... Low Unreviewed
CVE-2023-44322 was published Nov 14, 2023
An Unchecked Return Value vulnerability in the user interfaces to the Juniper Networks Junos OS... High Unreviewed
CVE-2023-44182 was published Oct 13, 2023
A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec... Moderate Unreviewed
CVE-2023-5215 was published Sep 28, 2023
GNU inetutils through 2.4 may allow privilege escalation because of unchecked return values of... High Unreviewed
CVE-2023-40303 was published Aug 14, 2023
Unchecked return value in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450... Moderate Unreviewed
CVE-2023-29243 was published Aug 11, 2023
ecrecover can return undefined data if signature does not verify Moderate
CVE-2023-37902 was published for vyper (pip) Jul 25, 2023
The Site Kit by Google plugin for WordPress is vulnerable to Sensitive Information Disclosure in... Moderate Unreviewed
CVE-2020-8934 was published Jul 7, 2023
B&R APROL versions < R 4.2-07 doesn’t process correctly specially formatted data packages sent to... High Unreviewed
CVE-2022-43765 was published Jul 6, 2023
The return value from `gfx::SourceSurfaceSkia::Map()` wasn't being verified which could have... High Unreviewed
CVE-2023-25733 was published Jun 19, 2023
Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2. Moderate Unreviewed
CVE-2023-3013 was published May 31, 2023
In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check for the hashmap__new return... High Unreviewed
CVE-2023-23003 was published Mar 1, 2023
HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0... High Unreviewed
CVE-2021-32845 was published Feb 18, 2023
Insufficient check of preconditions could lead to Denial of Service conditions when calling... High Unreviewed
CVE-2022-43763 was published Feb 8, 2023
A vulnerability, which was classified as problematic, has been found in vicamo NetworkManager.... Critical Unreviewed
CVE-2014-125043 was published Jan 5, 2023
An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers... Moderate Unreviewed
CVE-2022-3108 was published Dec 14, 2022
go-merkledag's ProtoNode may be modified such that common method calls may panic High
CVE-2022-23495 was published for github.com/ipfs/go-merkledag (Go) Dec 8, 2022
mrd0ll4r
Unchecked return value from xmlTextReaderExpand High
CVE-2022-23476 was published for nokogiri (RubyGems) Dec 8, 2022
A vulnerability was found in Axiomatic Bento4. It has been rated as problematic. Affected by this... Moderate Unreviewed
CVE-2022-3807 was published Nov 2, 2022
An Unchecked Return Value to NULL Pointer Dereference vulnerability in Packet Forwarding Engine ... High Unreviewed
CVE-2022-22231 was published Oct 18, 2022
An Unchecked Return Value to NULL Pointer Dereference vulnerability in Routing Protocol Daemon ... Moderate Unreviewed
CVE-2022-22233 was published Oct 18, 2022
An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE).... High Unreviewed
CVE-2022-40279 was published Sep 30, 2022
HashiCorp Consul vulnerable to authorization bypass Moderate
CVE-2022-40716 was published for github.com/hashicorp/consul (Go) Sep 25, 2022
tdunlap607
ProTip! Advisories are also available from the GraphQL API