Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

228 advisories

Loading
In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4... High Unreviewed
CVE-2020-7468 was published May 24, 2022
There is a denial of service vulnerability in some huawei products. In specific scenarios, due to... High Unreviewed
CVE-2020-9213 was published May 24, 2022
decompress_gunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huft_build result... High Unreviewed
CVE-2021-28831 was published May 24, 2022
An attacker-controlled memory allocation size can be passed to the C++ new operator in RnaDaSvr... High Unreviewed
CVE-2020-5802 was published May 24, 2022
An attacker can craft and send an OpenNamespace message to port 4241 with valid session-id that... High Unreviewed
CVE-2020-5801 was published May 24, 2022
An unauthenticated remote attacker can send data to RsvcHost.exe listening on TCP port 5241 to... High Unreviewed
CVE-2020-5807 was published May 24, 2022
Improper check or handling of exceptional conditions in MELSEC iQ-F series FX5U(C) CPU unit... High Unreviewed
CVE-2020-5665 was published May 24, 2022
Visual Components (owned by KUKA) is a robotic simulator that allows simulating factories and... High Unreviewed
CVE-2020-10292 was published May 24, 2022
A security feature bypass vulnerability exists in Microsoft Word software when it fails to... High Unreviewed
CVE-2020-16933 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2020-16895 was published May 24, 2022
When SAML authentication is enabled, Juniper Networks Mist Cloud UI might incorrectly handle SAML... High Unreviewed
CVE-2020-1676 was published May 24, 2022
A privilege escalation vulnerability exists in the Duo Authentication for Windows Logon and RDP... High Unreviewed
CVE-2020-3427 was published May 24, 2022
In appendFormatV of String8.cpp, there is a possible out of bounds write due to incorrect error... High Unreviewed
CVE-2020-0421 was published May 24, 2022
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to execute arbitrary code on the... High Unreviewed
CVE-2020-4302 was published May 24, 2022
An information leak was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1... High Unreviewed
CVE-2020-25869 was published May 24, 2022
In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could... High Unreviewed
CVE-2020-10604 was published May 24, 2022
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10.0 (MTK... High Unreviewed
CVE-2020-11875 was published May 24, 2022
In a certain condition, receipt of a specific BGP UPDATE message might cause Juniper Networks... High Unreviewed
CVE-2020-1632 was published May 24, 2022
smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products,... High Unreviewed
CVE-2020-7247 was published May 24, 2022
selectExpander in select.c in SQLite 3.30.1 proceeds with WITH stack unwinding even after a... High Unreviewed
CVE-2019-20218 was published May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580, Modicon BMENOC 0311, and... High Unreviewed
CVE-2019-6848 was published May 24, 2022
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain... High Unreviewed
CVE-2019-14287 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2019-1342 was published May 24, 2022
The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash... High Unreviewed
CVE-2019-0060 was published May 24, 2022
Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a... High Unreviewed
CVE-2019-16866 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database