GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,410
Composer 4,676
Erlang 34
GitHub Actions 26
Go 2,263
Maven 5,528
npm 3,915
NuGet 705
pip 3,686
Pub 12
RubyGems 916
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,530

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

426 advisories

Filter by severity

Sort by

Least recently updated

The Toyoko Inn official App for iOS versions prior to 1.13.0 and Toyoko Inn official App for... Moderate Unreviewed

CVE-2024-27440 was published Mar 13, 2024

This issue was addressed through improved state management. This issue is fixed in Safari 17.4,... Moderate Unreviewed

CVE-2024-23273 was published Mar 8, 2024

IBM QRadar Suite Products 1.10.12.0 through 1.10.18.0 and IBM Cloud Pak for Security 1.10.0.0... Moderate Unreviewed

CVE-2023-47742 was published Mar 3, 2024

An improper certificate validation vulnerability in Fortinet FortiOS 7.0.0 - 7.0.13, 7.2.0 - 7.2... Moderate Unreviewed

CVE-2023-47537 was published Feb 15, 2024

IBM SAN Volume Controller, IBM Storwize, IBM FlashSystem and IBM Storage Virtualize 8.6 products... Moderate Unreviewed

CVE-2023-47700 was published Feb 7, 2024

curl inadvertently kept the SSL session ID for connections in its cache even when the verify... Moderate Unreviewed

CVE-2024-0853 was published Feb 3, 2024

In Zscaler Internet Access (ZIA) a mismatch between Connect Host and Client Hello's Server Name... Moderate Unreviewed

CVE-2023-28807 was published Jan 31, 2024

SpliceCom Maximiser Soft PBX v1.5 and before was discovered to utilize a default SSL certificate.... Moderate Unreviewed

CVE-2023-33760 was published Jan 25, 2024

A lack of SSL certificate validation in Splicecom iPCS (iOS App) v1.3.4, iPCS2 (iOS App) v2.8 and... Moderate Unreviewed

CVE-2023-33757 was published Jan 25, 2024

An issue was discovered in Zammad before 6.2.0. In several subsystems, SSL/TLS was used to... Moderate Unreviewed

CVE-2023-50454 was published Dec 10, 2023

OpenVPN Connect versions before 3.4.0.4506 (macOS) and OpenVPN Connect before 3.4.0.3100 (Windows... Moderate Unreviewed

CVE-2022-3761 was published Oct 17, 2023

IBM Security Verify Privilege On-Premises 11.5 could allow an attacker to spoof a trusted entity... Moderate Unreviewed

CVE-2022-22380 was published Oct 17, 2023

IBM Security Verify Privilege On-Premises 11.5 does not validate, or incorrectly validates, a... Moderate Unreviewed

CVE-2022-43892 was published Oct 17, 2023

A certificate validation issue was addressed. This issue is fixed in iOS 16.7 and iPadOS 16.7, OS... Moderate Unreviewed

CVE-2023-41991 was published Sep 21, 2023

MiniTool Power Data Recovery 11.5 contains an insecure in-app payment system that allows... Moderate Unreviewed

CVE-2023-38353 was published Sep 19, 2023

Anaconda 3 2023.03-1-Linux allows local users to disrupt TLS certificate validation by modifying... Moderate Unreviewed

CVE-2023-35845 was published Sep 11, 2023

Incorrect certificate validation in InvokeHTTP on Apache NiFi MiNiFi C++ versions 0.13 to 0.14... Moderate Unreviewed

CVE-2023-41180 was published Sep 3, 2023

An improper certificate validation vulnerability [CWE-295] in FortiManager 7.0.1 and below, 6.4.6... Moderate Unreviewed

CVE-2022-22305 was published Sep 1, 2023

An improper certificate validation vulnerability exists in the BIG-IP Edge Client for Windows... Moderate Unreviewed

CVE-2023-24461 was published Jul 6, 2023

Jiyu Kukan Toku-Toku coupon App for iOS versions 3.5.0 and earlier, and Jiyu Kukan Toku-Toku... Moderate Unreviewed

CVE-2023-29501 was published Jun 13, 2023

An improper certificate validation vulnerability [CWE-295] in FortiOS 6.2 all versions, 6.4 all... Moderate Unreviewed

CVE-2023-29175 was published Jun 13, 2023

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6... Moderate Unreviewed

CVE-2023-34410 was published Jun 5, 2023

OCSP revocation status of recipient certificates was not checked when sending S/Mime encrypted... Moderate Unreviewed

CVE-2023-0547 was published Jun 2, 2023

Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed... Moderate Unreviewed

CVE-2023-0430 was published Jun 2, 2023

Dell NetWorker, contains an Improper Validation of Certificate with Host Mismatch vulnerability... Moderate Unreviewed

CVE-2023-24568 was published May 30, 2023

Previous 1 2 3 4 5 … 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

426 advisories