GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,768

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

296 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). Affected... High Unreviewed

CVE-2023-48427 was published Dec 12, 2023

Permission verification vulnerability in distributed scenarios. Successful exploitation of this... High Unreviewed

CVE-2023-49247 was published Dec 6, 2023

KEPServerEX does not properly validate certificates from clients which may allow... High Unreviewed

CVE-2023-5909 was published Dec 1, 2023

Precision Bridge PrecisionBridge.exe (aka the thick client) before 7.3.21 allows an integrity... High Unreviewed

CVE-2023-49312 was published Nov 27, 2023

Dell Unity prior to 5.3 contains a 'man in the middle' vulnerability in the vmadapter component.... High Unreviewed

CVE-2023-43082 was published Nov 22, 2023

Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote... High Unreviewed

CVE-2023-42532 was published Nov 13, 2023

It was discovered that when acting as TLS clients, Beats, Elastic Agent, APM Server, and Fleet... High Unreviewed

CVE-2023-31421 was published Oct 26, 2023

A potential security vulnerability has been identified in the HP ThinUpdate utility (also known... High Unreviewed

CVE-2023-4499 was published Oct 13, 2023

MiniTool Partition Wizard 12.8 contains an insecure installation mechanism that allows attackers... High Unreviewed

CVE-2023-38351 was published Sep 19, 2023

MiniTool Partition Wizard 12.8 contains an insecure update mechanism that allows attackers to... High Unreviewed

CVE-2023-38352 was published Sep 19, 2023

MiniTool Power Data Recovery 11.6 contains an insecure installation process that allows attackers... High Unreviewed

CVE-2023-38356 was published Sep 19, 2023

MiniTool Movie Maker 4.1 contains an insecure installation process that allows attackers to... High Unreviewed

CVE-2023-38354 was published Sep 19, 2023

MiniTool Movie Maker 6.1.0 contains an insecure installation process that allows attackers to... High Unreviewed

CVE-2023-38355 was published Sep 19, 2023

An improper certification validation vulnerability in the Insider Threat Management (ITM) Agent... High Unreviewed

CVE-2023-4801 was published Sep 13, 2023

Improper Certificate Validation in Samsung Email prior to version 6.1.82.0 allows remote attacker... High Unreviewed

CVE-2023-30729 was published Sep 6, 2023

If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of... High Unreviewed

CVE-2023-1409 was published Aug 23, 2023

In multiple locations, there are root CA certificates which need to be disabled. This could lead... High Unreviewed

CVE-2023-21265 was published Aug 14, 2023

Improper Validation of Certificate with Host Mismatch vulnerability in Hitachi Device Manager on... High Unreviewed

CVE-2023-34143 was published Jul 18, 2023

If a TLS 1.3 client gets neither a PSK (pre shared key) extension nor a KSE (key share extension)... High Unreviewed

CVE-2023-3724 was published Jul 18, 2023

Mattermost iOS app fails to properly validate the server certificate while initializing the TLS... High Unreviewed

CVE-2023-3615 was published Jul 17, 2023

DroneScout ds230 Remote ID receiver from BlueMark Innovations is affected by an Improper... High Unreviewed

CVE-2023-31190 was published Jul 11, 2023

Dell EMC Unisphere for PowerMax versions before 9.1.0.27, Dell EMC Unisphere for PowerMax Virtual... High Unreviewed

CVE-2021-21548 was published Jul 6, 2023

A CWE-295: Improper Certificate Validation vulnerability exists that could cause the CAE software... High Unreviewed

CVE-2022-32748 was published Jul 6, 2023

A misconfiguration vulnerability exists in the urvpn_client functionality of Milesight UR32L v32... High Unreviewed

CVE-2023-23546 was published Jul 6, 2023

An information disclosure vulnerability in 4D SAS 4D Server Application v17, v18, v19 R7 and... High Unreviewed

CVE-2023-30222 was published Jun 16, 2023

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

296 advisories