GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 18,873
Composer 3,683
Erlang 29
GitHub Actions 16
Go 1,708
Maven 4,944
npm 3,473
NuGet 603
pip 2,995
Pub 10
RubyGems 826
Rust 773
Swift 34

Unreviewed advisories

All unreviewed 218,409

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

5 advisories

Filter by severity

Sort by

Least recently updated

api-platform/core's secured properties may be accessible within collections High

CVE-2023-25575 was published for api-platform/core (Composer) Feb 28, 2023

Dell PowerScale OneFS 9.0.0.x-9.4.0.x contains an Incorrect User Management vulnerability. A low... High Unreviewed

CVE-2022-45097 was published Feb 1, 2023

A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to... High Unreviewed

CVE-2022-3650 was published Jan 17, 2023

Podman's incorrect handling of the supplementary groups may lead to data disclosure, modification High

CVE-2022-2989 was published for github.com/containers/podman/v3 (Go) Sep 14, 2022

Buildah's incorrect handling of the supplementary groups may lead to data disclosure, modification High

CVE-2022-2990 was published for github.com/containers/buildah (Go) Sep 14, 2022

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5 advisories