Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,262
NuGet
760
pip
4,058
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,092 advisories

Loading
An exploitable denial-of-service vulnerability exists in the resource allocation handling of... Moderate Unreviewed
CVE-2020-6080 was published May 24, 2022
An exploitable denial-of-service vulnerability exists in the resource allocation handling of... Moderate Unreviewed
CVE-2020-6079 was published May 24, 2022
Tor before 0.3.5.10, 0.4.x before 0.4.1.9, and 0.4.2.x before 0.4.2.7 allows remote attackers to... Moderate Unreviewed
CVE-2020-10592 was published May 24, 2022
The SSH daemon on MikroTik routers through v6.44.3 could allow remote attackers to generate CPU... Moderate Unreviewed
CVE-2020-10364 was published May 24, 2022
In parseTrackFragmentRun of MPEG4Extractor.cpp, there is a possible resource exhaustion due to... Moderate Unreviewed
CVE-2020-0088 was published May 24, 2022
NVIDIA vGPU graphics driver for guest OS contains a vulnerability in which an incorrect resource... Low Unreviewed
CVE-2020-5961 was published May 24, 2022
In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the LTE RRC dissector could... Moderate Unreviewed
CVE-2020-9431 was published May 24, 2022
NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500;... Moderate Unreviewed
CVE-2020-1881 was published May 24, 2022
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service (disk... Moderate Unreviewed
CVE-2020-9369 was published May 24, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5... Moderate Unreviewed
CVE-2020-4135 was published May 24, 2022
ext4_protect_reserved_inode in fs/ext4/block_validity.c in the Linux kernel through 5.5.3 allows... Moderate Unreviewed
CVE-2020-8992 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.021.20061 and earlier, 2017.011.30156 and earlier, 2017... Moderate Unreviewed
CVE-2020-3756 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.021.20061 and earlier, 2017.011.30156 and earlier, 2017... Moderate Unreviewed
CVE-2020-3753 was published May 24, 2022
A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: DK Standard... High Unreviewed
CVE-2019-13946 was published May 24, 2022
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0), SCALANCE S612 (All... High Unreviewed
CVE-2019-13926 was published May 24, 2022
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0), SCALANCE S612 (All... Moderate Unreviewed
CVE-2019-13925 was published May 24, 2022
A flaw was found in the way the Ceph RGW Beast front-end handles unexpected disconnects. An... Moderate Unreviewed
CVE-2020-1700 was published May 24, 2022
pmm-server in Percona Monitoring and Management (PMM) 2.2.x before 2.2.1 allows unauthenticated... High Unreviewed
CVE-2020-7920 was published May 24, 2022
Lib/zipfile.py in Python through 3.7.2 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2019-9674 was published May 24, 2022
In xml.rs in GNOME librsvg before 2.46.2, a crafted SVG file with nested patterns can cause... Moderate Unreviewed
CVE-2019-20446 was published May 24, 2022
Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8... Moderate Unreviewed
CVE-2020-8492 was published May 24, 2022
CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation... Moderate Unreviewed
CVE-2020-7052 was published May 24, 2022
Memory leak in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause... High Unreviewed
CVE-2015-5333 was published May 24, 2022
A vulnerability in the email parsing module Clam AntiVirus (ClamAV) Software versions 0.102.0, 0... High Unreviewed
CVE-2019-15961 was published May 24, 2022
GNU LibreDWG 0.9.3.2564 has an attempted excessive memory allocation in read_sections_map in... Moderate Unreviewed
CVE-2020-6610 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database