GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,080
Erlang
29
GitHub Actions
19
Go
1,908
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
256 advisories
Filter by severity
Local privilege escalation due to unrestricted loading of unsigned libraries. The following...
High
Unreviewed
CVE-2023-41744
was published
Aug 31, 2023
An Improper Verification of Cryptographic Signature in the SAML authentication of the Zscaler...
Critical
Unreviewed
CVE-2023-28801
was published
Aug 31, 2023
A vulnerability in Cisco Emergency Responder, Cisco Unified Communications Manager (Unified CM),...
High
Unreviewed
CVE-2023-20266
was published
Aug 30, 2023
Motorola MBTS Site Controller fails to check firmware update authenticity. The Motorola MBTS Site...
High
Unreviewed
CVE-2023-23772
was published
Aug 29, 2023
Motorola EBTS/MBTS Base Radio fails to check firmware authenticity. The Motorola MBTS Base Radio...
High
Unreviewed
CVE-2023-23773
was published
Aug 29, 2023
Improper verification of applications' cryptographic signatures in the /e/OS app store client App...
Moderate
Unreviewed
CVE-2021-43171
was published
Aug 22, 2023
Vulnerability of insecure signatures in the ServiceWifiResources module. Successful exploitation...
High
Unreviewed
CVE-2023-39393
was published
Aug 13, 2023
Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this...
High
Unreviewed
CVE-2023-39392
was published
Aug 13, 2023
The BIG-IP Edge Client Installer on macOS does not follow best practices for elevating...
High
Unreviewed
CVE-2023-38418
was published
Aug 2, 2023
Incorrect signature verification of the firmware during the Device Firmware Update process of...
Moderate
Unreviewed
CVE-2023-33768
was published
Jul 13, 2023
Dell PowerStore versions prior to 3.5 contain an improper verification of cryptographic...
High
Unreviewed
CVE-2023-32449
was published
Jun 22, 2023
Improper privilege management in Zoom for Windows, Zoom Rooms for Windows, and Zoom VDI for...
High
Unreviewed
CVE-2023-34120
was published
Jun 13, 2023
Zoom for Windows clients prior to 5.13.5 contain an improper verification of cryptographic...
High
Unreviewed
CVE-2023-28602
was published
Jun 13, 2023
Local privilege escalation due to unrestricted loading of unsigned libraries. The following...
High
Unreviewed
CVE-2022-4418
was published
May 18, 2023
DELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature...
High
Unreviewed
CVE-2023-25934
was published
May 4, 2023
An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application...
Moderate
Unreviewed
CVE-2023-28818
was published
Mar 24, 2023
In the Android operating system, there is a possible way to replace a boot partition due to...
High
Unreviewed
CVE-2023-20940
was published
Feb 28, 2023
An improper verification of cryptographic signature vulnerability [CWE-347] in FortiWeb 6.4 all...
Moderate
Unreviewed
CVE-2021-43074
was published
Feb 16, 2023
The cryptographic code signing process and controls on ConnectWise Control through 22.9.10032 ...
Critical
Unreviewed
CVE-2023-25718
was published
Feb 13, 2023
Western Digital My Cloud devices before OS5 do not use cryptographically signed Firmware upgrade...
Critical
Unreviewed
CVE-2021-36226
was published
Feb 6, 2023
Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper...
High
Unreviewed
CVE-2022-34459
was published
Feb 1, 2023
The Robot application in Ip-label Newtest before v8.5R0 was discovered to use weak signature...
Critical
Unreviewed
CVE-2022-23334
was published
Jan 30, 2023
CRYSTALS-DILITHIUM (in Post-Quantum Cryptography Selected Algorithms 2022) in PQClean d03da30 may...
High
Unreviewed
CVE-2023-24025
was published
Jan 20, 2023
An unprotected memory-access operation in optee_os in TrustedFirmware Open Portable Trusted...
Moderate
Unreviewed
CVE-2022-47549
was published
Dec 19, 2022
A CWE-347: Improper Verification of Cryptographic Signature vulnerability exists in the...
High
Unreviewed
CVE-2022-41669
was published
Nov 4, 2022
ProTip!
Advisories are also available from the
GraphQL API