Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,577 advisories

Loading
Improper validation vulnerability in VerifyCredentialResponse prior to SMR Apr-2022 Release 1... High Unreviewed
CVE-2022-27829 was published Apr 12, 2022
Improper validation vulnerability in SemBlurInfo prior to SMR Apr-2022 Release 1 allows attackers... High Unreviewed
CVE-2022-27830 was published Apr 12, 2022
Improper validation vulnerability in SemSuspendDialogInfo prior to SMR Apr-2022 Release 1 allows... High Unreviewed
CVE-2022-27826 was published Apr 12, 2022
When a user opens a manipulated Photoshop Document (.psd, 2d.x3d) received from untrusted sources... Moderate Unreviewed
CVE-2022-27654 was published Apr 13, 2022
When a user opens a manipulated Portable Document Format (.pdf, PDFView.x3d) received from... Moderate Unreviewed
CVE-2022-26109 was published Apr 13, 2022
When a user opens a manipulated Computer Graphics Metafile (.cgm, CgmCore.dll) received from... Moderate Unreviewed
CVE-2022-26106 was published Apr 13, 2022
A vulnerability has been identified in SCALANCE W1788-1 M12 (All versions < V3.0.0), SCALANCE... High Unreviewed
CVE-2022-28328 was published Apr 13, 2022
Multiple denial of service vulnerabilities exist in the cgiserver.cgi JSON command parser... High Unreviewed
CVE-2021-44355 was published Apr 15, 2022
In the MZ Automation LibIEC61850 in versions prior to 1.5.1 an unauthenticated attacker can craft... High Unreviewed
CVE-2022-1302 was published Apr 13, 2022
A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V,... High Unreviewed
CVE-2022-25751 was published Apr 13, 2022
Multiple denial of service vulnerabilities exist in the cgiserver.cgi JSON command parser... High Unreviewed
CVE-2021-44394 was published Apr 15, 2022
Multiple denial of service vulnerabilities exist in the cgiserver.cgi JSON command parser... High Unreviewed
CVE-2021-44357 was published Apr 15, 2022
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of input validation in... High Unreviewed
CVE-2021-44483 was published Apr 16, 2022
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of input validation in... High Unreviewed
CVE-2021-44482 was published Apr 16, 2022
A vulnerability has been identified in SCALANCE W1788-1 M12 (All versions < V3.0.0), SCALANCE... Moderate Unreviewed
CVE-2022-28329 was published Apr 13, 2022
A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients... Moderate Unreviewed
CVE-2022-20684 was published Apr 16, 2022
Multiple denial of service vulnerabilities exist in the cgiserver.cgi JSON command parser... High Unreviewed
CVE-2021-44354 was published Apr 15, 2022
Citrix XenMobile Server 10.12 through RP11, 10.13 through RP6, and 10.14 through RP4 allows... High Unreviewed
CVE-2022-26151 was published Apr 14, 2022
Multiple denial of service vulnerabilities exist in the cgiserver.cgi JSON command parser... High Unreviewed
CVE-2021-44356 was published Apr 15, 2022
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of parameter validation in... High Unreviewed
CVE-2021-44481 was published Apr 16, 2022
A vulnerability in the integrated wireless access point (AP) packet processing of the Cisco 1000... Moderate Unreviewed
CVE-2022-20761 was published Apr 16, 2022
A vulnerability in the IPSec decryption routine of Cisco IOS XE Software could allow an... High Unreviewed
CVE-2022-20679 was published Apr 16, 2022
Login screen allows message spoofing if SSO is enabled Moderate
CVE-2022-24905 was published for github.com/argoproj/argo-cd (Go) May 24, 2022
When a user opens a manipulated Jupiter Tesselation (.jt, JTReader.x3d) received from untrusted... Moderate Unreviewed
CVE-2022-26107 was published Apr 13, 2022
Apple iOS before 8.4.1 and OS X before 10.10.5 allow local users to bypass a code-signing... High Unreviewed
CVE-2015-3803 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database