Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

463 advisories

Loading
An uncaught exception vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing... High Unreviewed
CVE-2023-33370 was published Aug 3, 2023
An authenticated attacker with guest privileges or higher can cause the iControl SOAP process to... Moderate Unreviewed
CVE-2023-38419 was published Aug 2, 2023
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper... High Unreviewed
CVE-2023-36832 was published Jul 14, 2023
Vulnerability of failures to capture exceptions in the communication framework. Successful... High Unreviewed
CVE-2023-1695 was published Jul 6, 2023
In Progress MOVEit Transfer before 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022... High Unreviewed
CVE-2023-36933 was published Jul 5, 2023
In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to... High Unreviewed
CVE-2023-20692 was published Jul 4, 2023
On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent... High Unreviewed
CVE-2023-24510 was published Jun 6, 2023
Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to... High Unreviewed
CVE-2022-27978 was published Apr 26, 2023
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware,... High Unreviewed
CVE-2023-0204 was published Apr 22, 2023
An issue was discovered in ONOS 2.5.1. In IntentManager, the install-requested intent (which... High Unreviewed
CVE-2021-38363 was published Apr 20, 2023
An Improper Check or Handling of Exceptional Conditions vulnerability in packet processing on the... Moderate Unreviewed
CVE-2023-28970 was published Apr 18, 2023
mwlib 0.13 through 0.13.4 has a denial of service vulnerability when parsing #iferror magic... High Unreviewed
CVE-2012-1109 was published May 24, 2022
OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which... Moderate Unreviewed
CVE-2020-12105 was published May 24, 2022
Unhandled exception in Kernel-mode drivers for Intel(R) Ethernet 700 Series Controllers versions... Moderate Unreviewed
CVE-2019-0143 was published May 24, 2022
An issue was discovered in the Currency Switcher addon before 2.11.2 for WooCommerce if a user... Moderate Unreviewed
CVE-2019-18668 was published May 24, 2022
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain... High Unreviewed
CVE-2019-14287 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2019-1342 was published May 24, 2022
Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a... High Unreviewed
CVE-2019-16866 was published May 24, 2022
In a rare scenario, Check Point R80.30 Security Gateway before JHF Take 50 managed by Check Point... High Unreviewed
CVE-2019-8462 was published May 24, 2022
An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software... High Unreviewed
CVE-2019-5031 was published May 24, 2022
Zcashd in Zcash before 2.0.7-3 allows discovery of the IP address of a full node that owns a... Moderate Unreviewed
CVE-2019-16930 was published May 24, 2022
An issue was discovered in 3S-Smart CODESYS before 3.5.15.0 . Crafted network packets cause the... High Unreviewed
CVE-2019-9009 was published May 24, 2022
Java Facebook Thrift servers would not error upon receiving messages with containers of fields of... High Unreviewed
CVE-2019-3559 was published May 24, 2022
burn allows file names to escape via mishandled quotation marks Critical Unreviewed
CVE-2009-5043 was published Apr 21, 2022
** UNSUPPORTED WHEN ASSIGNED ** sys/netinet/tcp_timer.h in FreeBSD before 7.0 contains a denial... High Unreviewed
CVE-2022-32264 was published Sep 7, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database