Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

463 advisories

Loading
Possible buffer overflow due to lack of range check while processing a DIAG command for COEX... High Unreviewed
CVE-2021-30289 was published Jan 4, 2022
A vulnerability in the identity-based firewall (IDFW) rule processing feature of Cisco Adaptive... Moderate Unreviewed
CVE-2021-34787 was published May 24, 2022
A vulnerability in the Secure Sockets Layer (SSL) VPN feature of Cisco Adaptive Security... Moderate Unreviewed
CVE-2019-12677 was published May 24, 2022
XMLTooling Library Incorrectly Handles Some Exceptions High
CVE-2019-9628 was published for org.opensaml:xmltooling (Maven) May 13, 2022 withdrawn
njuneau-coveo twn
Credited to njuneau-coveo and twn
A vulnerability in the processing of malformed Common Industrial Protocol (CIP) packets that are... High Unreviewed
CVE-2022-20919 was published Oct 1, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed
CVE-2022-20726 was published Apr 16, 2022
NVIDIA DCGM contains a vulnerability in nvhostengine, where a network user can cause detection of... Moderate Unreviewed
CVE-2022-21820 was published Mar 25, 2022
Improper access control vulnerability in IpcRxServiceModeBigDataInfo in RIL prior to SMR Nov-2022... Low Unreviewed
CVE-2022-39886 was published Nov 10, 2022
Traefik HTTP/2 connections management could cause a denial of service High
CVE-2022-39271 was published for github.com/traefik/traefik/v2 (Go) Oct 10, 2022
Improper access control vulnerability in BootCompletedReceiver_CMCC in DeviceManagement prior to... Low Unreviewed
CVE-2022-39885 was published Nov 10, 2022
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed
CVE-2022-35268 was published Oct 25, 2022
Improper handling of exceptional conditions in Bixby prior to version 3.0.53.02 allows attacker... High Unreviewed
CVE-2021-25380 was published May 24, 2022
Improper Handling of Exceptional Conditions, Improper Check for Unusual or Exceptional Conditions... High Unreviewed
CVE-2021-22285 was published Feb 10, 2022
Uncaught Exception in engine.io High
CVE-2022-21676 was published for engine.io (npm) Jan 13, 2022
marwej
Credited to marwej
A vulnerability in the local malware analysis process of Cisco Firepower Threat Defense (FTD)... Moderate Unreviewed
CVE-2022-20748 was published May 4, 2022
Cilium eBPF filters may be temporarily removed during agent restart Moderate
CVE-2023-27595 was published for github.com/cilium/cilium (Go) Mar 17, 2023
ldelossa ti-mo
aanm
Credited to ldelossa, ti-mo, and aanm
A vulnerability in the AppNav-XE feature of Cisco IOS XE Software could allow an unauthenticated,... High Unreviewed
CVE-2022-20678 was published Apr 16, 2022
In multiple functions of SnoozeHelper.java, there is a possible failure to persist settings due... High Unreviewed
CVE-2023-20993 was published Mar 24, 2023
Comrak AST node data is not validated (GHSL-2023-049) Moderate
CVE-2023-28631 was published for comrak (Rust) Mar 28, 2023
darakian
Credited to darakian
A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco... High Unreviewed
CVE-2019-1858 was published May 24, 2022
Denial of Service in axios High
CVE-2019-10742 was published for axios (npm) May 29, 2019
tdunlap607
Credited to tdunlap607
An Improper Handling of Exceptional Conditions vulnerability in obs-service-go_modules of... Moderate Unreviewed
CVE-2022-45155 was published Mar 15, 2023
Uncaught exception in webserver for the Integrated BMC in some Intel(R) platforms before versions... Moderate Unreviewed
CVE-2022-29493 was published Feb 16, 2023
Uncaught exception in the FCS Server software maintained by Intel before version 1.1.79.3 may... Moderate Unreviewed
CVE-2022-36287 was published Feb 16, 2023
Uncaught exception in the Intel(R) Iris(R) Xe MAX drivers for Windows before version 100.0.5.1436... Moderate Unreviewed
CVE-2022-34849 was published Feb 16, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database