GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,009
Composer 4,300
Erlang 31
GitHub Actions 21
Go 2,065
Maven 5,241
npm 3,744
NuGet 668
pip 3,427
Pub 12
RubyGems 892
Rust 877
Swift 36

Unreviewed advisories

All unreviewed 240,106

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

359 advisories

Filter by severity

Sort by

Least recently updated

VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because... Critical Unreviewed

CVE-2018-19991 was published May 13, 2022

IBM DataPower Gateways 7.1, 7.2, 7.5, 7.5.1, 7.5.2, 7.6, and 7.7 and IBM MQ Appliance are... Moderate Unreviewed

CVE-2018-1677 was published May 13, 2022

Cloud Foundry Loggregator, versions 89.x prior to 89.5 or 96.x prior to 96.1 or 99.x prior to 99... Moderate Unreviewed

CVE-2018-1269 was published May 13, 2022

Failure condition is not handled properly and the correct error code is not returned. It could... High Unreviewed

CVE-2018-11921 was published May 13, 2022

A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco... High Unreviewed

CVE-2018-0155 was published May 13, 2022

A vulnerability in the netconf interface of Cisco IOS XR Software could allow an unauthenticated,... Moderate Unreviewed

CVE-2018-0286 was published May 13, 2022

A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave... Moderate Unreviewed

CVE-2019-7474 was published May 13, 2022

A vulnerability in the detection engine of Cisco Firepower Threat Defense Software could allow an... Moderate Unreviewed

CVE-2019-1691 was published May 13, 2022

A vulnerability in the web management interface of Cisco Wireless LAN Controller (WLC) Software... High Unreviewed

CVE-2017-3832 was published May 13, 2022

A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP... High Unreviewed

CVE-2019-6575 was published May 13, 2022

A missing error check exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera... Critical Unreviewed

CVE-2017-2877 was published May 13, 2022

Uncaught exception in the BIOS firmware for some Intel(R) Processors may allow a privileged user... High Unreviewed

CVE-2021-0190 was published May 13, 2022

Local privilege escalation in Windows products of ESET allows user who is logged into the system... High Unreviewed

CVE-2021-37851 was published May 12, 2022

Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to... High Unreviewed

CVE-2022-27167 was published May 11, 2022

Perdition before 2.2 may have weak security when handling outbound connections, caused by an... Moderate Unreviewed

CVE-2013-4584 was published May 5, 2022

A vulnerability in the local malware analysis process of Cisco Firepower Threat Defense (FTD)... Moderate Unreviewed

CVE-2022-20748 was published May 4, 2022

In aee driver, there is a possible reference count mistake due to incorrect error handling. This... High Unreviewed

CVE-2022-20088 was published May 4, 2022

In ion, there is a possible use after free due to incorrect error handling. This could lead to... High Unreviewed

CVE-2022-20111 was published May 4, 2022

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle... Moderate Unreviewed

CVE-2008-4302 was published May 2, 2022

pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other... High Unreviewed

CVE-2006-5170 was published May 1, 2022

burn allows file names to escape via mishandled quotation marks Critical Unreviewed

CVE-2009-5043 was published Apr 21, 2022

A vulnerability in the AppNav-XE feature of Cisco IOS XE Software could allow an unauthenticated,... High Unreviewed

CVE-2022-20678 was published Apr 16, 2022

Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed

CVE-2022-20726 was published Apr 16, 2022

A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG... High Unreviewed

CVE-2022-25795 was published Apr 14, 2022

An improper handling of exceptional conditions vulnerability exists in the DNS proxy feature of... Moderate Unreviewed

CVE-2022-0023 was published Apr 14, 2022

Previous 1 2 … 11 12 13 14 15 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

359 advisories