GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,825
Erlang
29
GitHub Actions
16
Go
1,715
Maven
4,950
npm
3,479
NuGet
605
pip
3,009
Pub
10
RubyGems
832
Rust
776
Swift
34
Unreviewed advisories
All unreviewed
5,000+
278 advisories
Filter by severity
A vulnerability was found in TOTOLINK EX1200L EN_V9.3.5u.6146_B20201023 and classified as...
Moderate
Unreviewed
CVE-2023-4412
was published
Aug 18, 2023
A vulnerability was found in ONS Digital RAS Collection Instrument up to 2.0.27 and classified as...
Moderate
Unreviewed
CVE-2020-36762
was published
Jul 18, 2023
A vulnerability was found in Ruijie BCR810W 2.5.10. It has been rated as critical. This issue...
Moderate
Unreviewed
CVE-2023-3608
was published
Jul 11, 2023
A vulnerability was found in kodbox 1.26. It has been declared as critical. This vulnerability...
Moderate
Unreviewed
CVE-2023-3607
was published
Jul 10, 2023
A vulnerability was found in TamronOS up to 20230703. It has been classified as critical. This...
Moderate
Unreviewed
CVE-2023-3606
was published
Jul 10, 2023
An attacker having physical access to WDM can plug USB device to gain access and execute unwanted...
Moderate
Unreviewed
CVE-2022-46361
was published
Jul 6, 2023
PAX A930 device with PayDroid_7.1.1_Virgo_V04.5.02_20220722 can allow the execution of arbitrary...
Moderate
Unreviewed
CVE-2023-27198
was published
Jul 5, 2023
A vulnerability was found in Ruijie RG-BCR860 2.5.13 and classified as critical. This issue...
Moderate
Unreviewed
CVE-2023-3450
was published
Jun 28, 2023
A vulnerability was found in KylinSoft kylin-software-properties on KylinOS. It has been rated as...
Moderate
Unreviewed
CVE-2023-3097
was published
Jun 5, 2023
A command injection vulnerability exists in the administrative web portal in TP-Link Archer...
Moderate
Unreviewed
CVE-2023-31756
was published
May 19, 2023
Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated...
Moderate
Unreviewed
CVE-2023-20163
was published
May 18, 2023
Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated...
Moderate
Unreviewed
CVE-2023-20164
was published
May 18, 2023
A vulnerability was found in Chengdu VEC40G 3.0. It has been declared as critical. Affected by...
Moderate
Unreviewed
CVE-2023-2522
was published
May 4, 2023
OS Command Injection in TripleData Reporting Engine in Tripleplay Platform releases prior to...
Moderate
Unreviewed
CVE-2023-25759
was published
Apr 19, 2023
A vulnerability classified as critical was found in KylinSoft youker-assistant. Affected by this...
Moderate
Unreviewed
CVE-2023-2091
was published
Apr 15, 2023
Multiple vulnerabilities in the restricted shell of Cisco Evolved Programmable Network Manager ...
Moderate
Unreviewed
CVE-2023-20121
was published
Apr 5, 2023
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could...
Moderate
Unreviewed
CVE-2023-20153
was published
Apr 5, 2023
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could...
Moderate
Unreviewed
CVE-2023-20022
was published
Apr 5, 2023
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could...
Moderate
Unreviewed
CVE-2023-20023
was published
Apr 5, 2023
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could...
Moderate
Unreviewed
CVE-2023-20152
was published
Apr 5, 2023
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could...
Moderate
Unreviewed
CVE-2023-20021
was published
Apr 5, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected...
Moderate
Unreviewed
CVE-2022-43628
was published
Mar 29, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected...
Moderate
Unreviewed
CVE-2022-43627
was published
Mar 29, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected...
Moderate
Unreviewed
CVE-2022-43624
was published
Mar 29, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected...
Moderate
Unreviewed
CVE-2022-43626
was published
Mar 29, 2023
ProTip!
Advisories are also available from the
GraphQL API