Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

463 advisories

Loading
** DISPUTED ** Styra Open Policy Agent (OPA) Gatekeeper through 3.7.0 mishandles concurrency,... Moderate Unreviewed
CVE-2021-43979 was published May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** An issue was discovered in ReadyTalk Avian 1.2.0. The vm:... Moderate Unreviewed
CVE-2020-17361 was published May 24, 2022
When curl is instructed to download content using the metalink feature, thecontents is verified... High Unreviewed
CVE-2021-22922 was published May 24, 2022
Buffer Overflow vulnerability in baramundi software GmbH EMM Agent 23.1.50 and before allows an... Moderate Unreviewed
CVE-2023-37605 was published Oct 2, 2023
An Improper Handling of Exceptional Conditions vulnerability in AS PATH processing of Juniper... High Unreviewed
CVE-2023-44186 was published Oct 11, 2023
Denial of Service in http-swagger High
CVE-2022-24863 was published for github.com/swaggo/http-swagger (Go) Apr 22, 2022
Improper Handling of Exceptional Conditions in Apache Tomcat High
CVE-2017-5664 was published for org.apache.tomcat:tomcat (Maven) May 13, 2022
sunSUNQ
Credited to sunSUNQ
In apusys, there is a possible memory corruption due to incorrect error handling. This could lead... High Unreviewed
CVE-2021-0668 was published Nov 19, 2021
app/Controller/Component/IndexFilterComponent.php in MISP before 2.4.167 mishandles... Critical Unreviewed
CVE-2022-48328 was published Feb 20, 2023
fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle... Moderate Unreviewed
CVE-2008-4302 was published May 2, 2022
lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call... Moderate Unreviewed
CVE-2022-33748 was published Oct 11, 2022
issues with partially successful P2M updates on x86 T[his CNA information record relates to... High Unreviewed
CVE-2021-28709 was published May 24, 2022
issues with partially successful P2M updates on x86 T[his CNA information record relates to... High Unreviewed
CVE-2021-28705 was published May 24, 2022
Dell Power Manager, versions prior to 3.14, contain an Improper Authorization vulnerability in... High Unreviewed
CVE-2023-25543 was published Feb 6, 2024
A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine (ISE)... High Unreviewed
CVE-2023-20243 was published Sep 6, 2023
A vulnerability in the processing of SSH connections of Cisco Firepower Management Center (FMC)... High Unreviewed
CVE-2022-20854 was published Nov 16, 2022
An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net:... High Unreviewed
CVE-2021-32066 was published May 24, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in Juniper DHCP Daemon ... Moderate Unreviewed
CVE-2023-36842 was published Jan 12, 2024
A user authorized to perform database queries may cause denial of service by issuing a specially... Moderate Unreviewed
CVE-2020-7926 was published May 24, 2022
simpleSAMLphp incorrectly handles XML encryption High
CVE-2011-4625 was published for simplesamlphp/simplesamlphp (Composer) Apr 22, 2022
An Improper Handling of Exceptional Conditions vulnerability in the broadband edge subscriber... Moderate Unreviewed
CVE-2024-21587 was published Jan 12, 2024
An Improper Handling of Exceptional Conditions vulnerability in BGP session processing of... Moderate Unreviewed
CVE-2024-21585 was published Jan 12, 2024
Improper Handling of Exceptional Conditions in Newtonsoft.Json High
CVE-2024-21907 was published for Newtonsoft.Json (NuGet) Jun 22, 2022
ezsilmar JamesNK
Credited to ezsilmar and JamesNK
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2020-16895 was published May 24, 2022
Improper handling of insufficient permissions or privileges vulnerability in Samsung Data Store... Moderate Unreviewed
CVE-2023-42578 was published Dec 5, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database