Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,986
Erlang
39
GitHub Actions
38
Go
2,626
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
954
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

463 advisories

Loading
IBM DataPower Gateways 7.1, 7.2, 7.5, 7.5.1, 7.5.2, 7.6, and 7.7 and IBM MQ Appliance are... Moderate Unreviewed
CVE-2018-1677 was published May 13, 2022
Cloud Foundry Loggregator, versions 89.x prior to 89.5 or 96.x prior to 96.1 or 99.x prior to 99... Moderate Unreviewed
CVE-2018-1269 was published May 13, 2022
Failure condition is not handled properly and the correct error code is not returned. It could... High Unreviewed
CVE-2018-11921 was published May 13, 2022
A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco... High Unreviewed
CVE-2018-0155 was published May 13, 2022
A vulnerability in the netconf interface of Cisco IOS XR Software could allow an unauthenticated,... Moderate Unreviewed
CVE-2018-0286 was published May 13, 2022
A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave... Moderate Unreviewed
CVE-2019-7474 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower Threat Defense Software could allow an... Moderate Unreviewed
CVE-2019-1691 was published May 13, 2022
OpenStack Neutron's unsupported dport option prevents applying security groups High
CVE-2019-9735 was published for neutron (pip) May 13, 2022
A vulnerability in the web management interface of Cisco Wireless LAN Controller (WLC) Software... High Unreviewed
CVE-2017-3832 was published May 13, 2022
A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP... High Unreviewed
CVE-2019-6575 was published May 13, 2022
XMLTooling Library Incorrectly Handles Some Exceptions High
CVE-2019-9628 was published for org.opensaml:xmltooling (Maven) May 13, 2022 withdrawn
njuneau-coveo twn
Credited to njuneau-coveo and twn
A missing error check exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera... Critical Unreviewed
CVE-2017-2877 was published May 13, 2022
Uncaught exception in the BIOS firmware for some Intel(R) Processors may allow a privileged user... High Unreviewed
CVE-2021-0190 was published May 13, 2022
Local privilege escalation in Windows products of ESET allows user who is logged into the system... High Unreviewed
CVE-2021-37851 was published May 12, 2022
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to... High Unreviewed
CVE-2022-27167 was published May 11, 2022
Perdition before 2.2 may have weak security when handling outbound connections, caused by an... Moderate Unreviewed
CVE-2013-4584 was published May 5, 2022
A vulnerability in the local malware analysis process of Cisco Firepower Threat Defense (FTD)... Moderate Unreviewed
CVE-2022-20748 was published May 4, 2022
In aee driver, there is a possible reference count mistake due to incorrect error handling. This... High Unreviewed
CVE-2022-20088 was published May 4, 2022
In ion, there is a possible use after free due to incorrect error handling. This could lead to... High Unreviewed
CVE-2022-20111 was published May 4, 2022
fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle... Moderate Unreviewed
CVE-2008-4302 was published May 2, 2022
pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other... High Unreviewed
CVE-2006-5170 was published May 1, 2022
Denial of Service in http-swagger High
CVE-2022-24863 was published for github.com/swaggo/http-swagger (Go) Apr 22, 2022
simpleSAMLphp incorrectly handles XML encryption High
CVE-2011-4625 was published for simplesamlphp/simplesamlphp (Composer) Apr 22, 2022
burn allows file names to escape via mishandled quotation marks Critical Unreviewed
CVE-2009-5043 was published Apr 21, 2022
A vulnerability in the AppNav-XE feature of Cisco IOS XE Software could allow an unauthenticated,... High Unreviewed
CVE-2022-20678 was published Apr 16, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database