GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,916
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,246 advisories
Filter by severity
The affected product is vulnerable to an improper authentication vulnerability, which...
High
Unreviewed
CVE-2023-41089
was published
Oct 19, 2023
BeyondTrust Privileged Remote Access (PRA) versions 22.2.x to 22.4.x are vulnerable to a local...
High
Unreviewed
CVE-2023-23632
was published
Oct 12, 2023
Vulnerability of brute-force attacks on the device authentication module.Successful exploitation...
High
Unreviewed
CVE-2023-44096
was published
Oct 11, 2023
Sensitive information disclosure and manipulation due to improper authentication. The following...
High
Unreviewed
CVE-2023-45246
was published
Oct 6, 2023
Garuda Linux performs an insecure user creation and authentication that allows any user to...
High
Unreviewed
CVE-2021-3784
was published
Oct 4, 2023
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
High
Unreviewed
CVE-2023-28540
was published
Oct 3, 2023
Authentication bypass vulnerability in ACERA 1320 firmware ver.01.26 and earlier, and ACERA 1310...
High
Unreviewed
CVE-2023-42771
was published
Oct 3, 2023
NVIDIA DGX H100 BMC contains a vulnerability in the REST service where a host user may cause as...
High
Unreviewed
CVE-2023-31015
was published
Sep 20, 2023
ARCONTE Aurea's authentication system, in its 1.5.0.0 version, could allow an attacker to make...
High
Unreviewed
CVE-2023-4094
was published
Sep 19, 2023
A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki...
High
Unreviewed
CVE-2023-0813
was published
Sep 15, 2023
An issue was discovered in Bezeq Vtech NB403-IL version BZ_2.02.07.09.13.01 and Vtech IAD604-IL...
High
Unreviewed
CVE-2022-47848
was published
Sep 15, 2023
A vulnerability exists in the Equipment Tag Out authentication, when configured with Single Sign...
High
Unreviewed
CVE-2023-4816
was published
Sep 11, 2023
Improper authentication vulnerability in Archer C20 firmware versions prior to 'Archer C20(JP...
High
Unreviewed
CVE-2023-37284
was published
Sep 6, 2023
Improper authentication in SecSettings prior to SMR Sep-2023 Release 1 allows attacker to access...
High
Unreviewed
CVE-2023-30708
was published
Sep 6, 2023
An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation...
High
Unreviewed
CVE-2023-34998
was published
Sep 5, 2023
A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions...
High
Unreviewed
CVE-2023-39981
was published
Sep 2, 2023
Zoho ManageEngine ADManager Plus through 7186 is vulnerable to 2FA bypass.
High
Unreviewed
CVE-2023-35785
was published
Aug 28, 2023
Walchem Intuition 9 firmware versions prior to v4.21 are vulnerable to improper authentication....
High
Unreviewed
CVE-2023-32202
was published
Aug 24, 2023
Improper authentication vulnerability in the CBC products allows a remote authenticated attacker...
High
Unreviewed
CVE-2023-38585
was published
Aug 23, 2023
Because of an authentication flaw an attacker would be capable of generating a web report that...
High
Unreviewed
CVE-2023-25913
was published
Aug 21, 2023
A vulnerability was found in Ruijie RG-EW1200G 07161417 r483. It has been rated as critical....
High
Unreviewed
CVE-2023-4415
was published
Aug 18, 2023
Improper authentication vulnerability in Proself Enterprise/Standard Edition Ver5.61 and earlier,...
High
Unreviewed
CVE-2023-39415
was published
Aug 18, 2023
TN-5900 Series firmware version v3.3 and prior is vulnerable to improper-authentication...
High
Unreviewed
CVE-2023-33237
was published
Aug 17, 2023
The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to...
High
Unreviewed
CVE-2023-3263
was published
Aug 14, 2023
Permission control vulnerability in the audio module. Successful exploitation of this...
High
Unreviewed
CVE-2023-39380
was published
Aug 13, 2023
ProTip!
Advisories are also available from the
GraphQL API