Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

416 advisories

Loading
VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because... Critical Unreviewed
CVE-2018-19991 was published May 13, 2022
Cloud Foundry Loggregator, versions 89.x prior to 89.5 or 96.x prior to 96.1 or 99.x prior to 99... Moderate Unreviewed
CVE-2018-1269 was published May 13, 2022
IBM DataPower Gateways 7.1, 7.2, 7.5, 7.5.1, 7.5.2, 7.6, and 7.7 and IBM MQ Appliance are... Moderate Unreviewed
CVE-2018-1677 was published May 13, 2022
MinIO Admin API security issue High Unreviewed
CVE-2020-11012 was published May 24, 2021
vadmeste aead
Failure condition is not handled properly and the correct error code is not returned. It could... High Unreviewed
CVE-2018-11921 was published May 13, 2022
Denial of Service (DoS) in restify-paginate High
CVE-2020-27543 was published for restify-paginate (npm) Apr 12, 2021
A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco... High Unreviewed
CVE-2018-0155 was published May 13, 2022
A vulnerability in the netconf interface of Cisco IOS XR Software could allow an unauthenticated,... Moderate Unreviewed
CVE-2018-0286 was published May 13, 2022
A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave... Moderate Unreviewed
CVE-2019-7474 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower Threat Defense Software could allow an... Moderate Unreviewed
CVE-2019-1691 was published May 13, 2022
A vulnerability in the web management interface of Cisco Wireless LAN Controller (WLC) Software... High Unreviewed
CVE-2017-3832 was published May 13, 2022
Improper Check for Unusual or Exceptional Conditions in Connect2id Nimbus JOSE+JWT Critical
CVE-2019-17195 was published for com.nimbusds:nimbus-jose-jwt (Maven) Oct 16, 2019
Improper Handling of Exceptional Conditions and Origin Validation Error in Eclipse Paho Java client library Moderate
CVE-2019-11777 was published for org.eclipse.paho:org.eclipse.paho.client.mqttv3 (Maven) Sep 17, 2019
Local privilege escalation in Windows products of ESET allows user who is logged into the system... High Unreviewed
CVE-2021-37851 was published May 12, 2022
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to... High Unreviewed
CVE-2022-27167 was published May 11, 2022
In aee driver, there is a possible reference count mistake due to incorrect error handling. This... High Unreviewed
CVE-2022-20088 was published May 4, 2022
In ion, there is a possible use after free due to incorrect error handling. This could lead to... High Unreviewed
CVE-2022-20111 was published May 4, 2022
An unhandled exception in check_ignored() in apport/report.py can be exploited by a local... Low Unreviewed
CVE-2020-15701 was published May 24, 2022
nadesiko3 allows remote attacker to inject invalid value to decodeURIComponent of nako3edit Moderate
CVE-2022-41777 was published for nadesiko3 (npm) Dec 5, 2022
pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other... High Unreviewed
CVE-2006-5170 was published May 1, 2022
An improper handling of exceptional conditions vulnerability in Trend Micro Apex One and Apex One... High Unreviewed
CVE-2022-44652 was published Dec 12, 2022
Uncaught exception in the BIOS firmware for some Intel(R) Processors may allow a privileged user... High Unreviewed
CVE-2021-0190 was published May 13, 2022
Under certain conditions, the application SAP BusinessObjects Business Intelligence Platform ... Moderate Unreviewed
CVE-2022-35295 was published Sep 14, 2022
In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue.... High Unreviewed
CVE-2021-28876 was published May 24, 2022
An improper handling of exceptional conditions vulnerability exists in Open Design Alliance ODA... Critical Unreviewed
CVE-2021-43272 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database