Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

391 advisories

Loading
Uncaught exception in firmware for Intel(R) Ethernet Adapters 800 Series Controllers and... Moderate Unreviewed
CVE-2021-0007 was published May 24, 2022
Improper conditions check in firmware for Intel(R) Ethernet Adapters 800 Series Controllers and... Moderate Unreviewed
CVE-2021-0006 was published May 24, 2022
Uncaught exception in firmware for Intel(R) Ethernet Adapters 800 Series Controllers and... Moderate Unreviewed
CVE-2021-0005 was published May 24, 2022
When curl is instructed to download content using the metalink feature, thecontents is verified... High Unreviewed
CVE-2021-22922 was published May 24, 2022
All versions of the CODESYS V3 Runtime Toolkit for VxWorks from version V3.5.8.0 and before... High Unreviewed
CVE-2021-33486 was published May 24, 2022
An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net:... High Unreviewed
CVE-2021-32066 was published May 24, 2022
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it... Moderate Unreviewed
CVE-2021-1102 was published May 24, 2022
An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers... Moderate Unreviewed
CVE-2020-19473 was published May 24, 2022
Improper Handling of Exceptional Conditions in Ethernet interface frame processing of Juniper... Moderate Unreviewed
CVE-2021-0290 was published May 24, 2022
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 produce incorrect PDF document signatures... Moderate Unreviewed
CVE-2021-33795 was published May 24, 2022
An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-005. Hashing is mishandled for... High Unreviewed
CVE-2021-34549 was published May 24, 2022
A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG... High Unreviewed
CVE-2021-27042 was published May 24, 2022
In updateDrawable of StatusBarIconView.java, there is a possible permission bypass due to an... High Unreviewed
CVE-2021-0478 was published May 24, 2022
DoS attack can be performed when an email contains specially designed URL in the body. It can... Moderate Unreviewed
CVE-2021-21439 was published May 24, 2022
Mintty before 3.4.7 mishandles Bracketed Paste Mode. High Unreviewed
CVE-2021-31701 was published May 24, 2022
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain sensitive information... Moderate Unreviewed
CVE-2019-4722 was published May 24, 2022
There is a denial of service vulnerability in some versions of ManageOne. There is a logic error... Moderate Unreviewed
CVE-2021-22409 was published May 24, 2022
rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code... High Unreviewed
CVE-2021-33477 was published May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... High Unreviewed
CVE-2021-25662 was published May 24, 2022
Improper handling of address deregistration on failure can lead to new GPU address allocation... Moderate Unreviewed
CVE-2021-1906 was published May 24, 2022
ModSecurity 3.x before 3.0.4 mishandles key-value pair parsing, as demonstrated by a "string... Moderate Unreviewed
CVE-2019-25043 was published May 24, 2022
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could... Moderate Unreviewed
CVE-2021-1495 was published May 24, 2022
A vulnerability in the processing of traffic matching a firewall filter containing a syslog... Moderate Unreviewed
CVE-2021-0264 was published May 24, 2022
Due to a vulnerability in DDoS protection in Juniper Networks Junos OS and Junos OS Evolved on... High Unreviewed
CVE-2021-0259 was published May 24, 2022
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent,... High Unreviewed
CVE-2021-0240 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database