GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
127 advisories
Filter by severity
Local privilege escalation due to unrestricted loading of unsigned libraries. The following...
High
Unreviewed
CVE-2023-41744
was published
Aug 31, 2023
A vulnerability in Cisco Emergency Responder, Cisco Unified Communications Manager (Unified CM),...
High
Unreviewed
CVE-2023-20266
was published
Aug 30, 2023
Motorola EBTS/MBTS Base Radio fails to check firmware authenticity. The Motorola MBTS Base Radio...
High
Unreviewed
CVE-2023-23773
was published
Aug 29, 2023
Motorola MBTS Site Controller fails to check firmware update authenticity. The Motorola MBTS Site...
High
Unreviewed
CVE-2023-23772
was published
Aug 29, 2023
Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this...
High
Unreviewed
CVE-2023-39392
was published
Aug 13, 2023
Vulnerability of insecure signatures in the ServiceWifiResources module. Successful exploitation...
High
Unreviewed
CVE-2023-39393
was published
Aug 13, 2023
Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows...
High
Unreviewed
CVE-2023-39211
was published
Aug 9, 2023
The BIG-IP Edge Client Installer on macOS does not follow best practices for elevating...
High
Unreviewed
CVE-2023-38418
was published
Aug 2, 2023
Dell PowerStore versions prior to 3.5 contain an improper verification of cryptographic...
High
Unreviewed
CVE-2023-32449
was published
Jun 22, 2023
Improper privilege management in Zoom for Windows, Zoom Rooms for Windows, and Zoom VDI for...
High
Unreviewed
CVE-2023-34120
was published
Jun 13, 2023
Zoom for Windows clients prior to 5.13.5 contain an improper verification of cryptographic...
High
Unreviewed
CVE-2023-28602
was published
Jun 13, 2023
Local privilege escalation due to unrestricted loading of unsigned libraries. The following...
High
Unreviewed
CVE-2022-4418
was published
May 18, 2023
DELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature...
High
Unreviewed
CVE-2023-25934
was published
May 4, 2023
In the Android operating system, there is a possible way to replace a boot partition due to...
High
Unreviewed
CVE-2023-20940
was published
Feb 28, 2023
Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper...
High
Unreviewed
CVE-2022-34459
was published
Feb 1, 2023
CRYSTALS-DILITHIUM (in Post-Quantum Cryptography Selected Algorithms 2022) in PQClean d03da30 may...
High
Unreviewed
CVE-2023-24025
was published
Jan 20, 2023
A CWE-347: Improper Verification of Cryptographic Signature vulnerability exists in the...
High
Unreviewed
CVE-2022-41669
was published
Nov 4, 2022
A CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that allows...
High
Unreviewed
CVE-2022-41666
was published
Nov 4, 2022
By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker...
High
Unreviewed
CVE-2022-38178
was published
Sep 22, 2022
By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker...
High
Unreviewed
CVE-2022-38177
was published
Sep 22, 2022
The Zoom Client for Meetings for MacOS (Standard and for IT Admin) before version 5.11.3 contains...
High
Unreviewed
CVE-2022-28751
was published
Aug 18, 2022
The tested version of Dominion Voting Systems ImageCast X does not validate application...
High
Unreviewed
CVE-2022-1739
was published
Jun 25, 2022
The Zoom Client for Meetings for Windows installer before version 5.5.4 does not properly verify...
High
Unreviewed
CVE-2021-34420
was published
May 24, 2022
There is a signature management vulnerability in some huawei products. An attacker can forge...
High
Unreviewed
CVE-2021-37127
was published
May 24, 2022
It is possible for an attacker to manipulate signed documents and macros to appear to come from a...
High
Unreviewed
CVE-2021-41830
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API