GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,156

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

11,577 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An improper sanitization of input vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows... High Unreviewed

CVE-2021-33886 was published May 24, 2022

Missing parameter type validation in the DRM module. Successful exploitation of this... High Unreviewed

CVE-2022-44556 was published Nov 8, 2022

Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote... Critical Unreviewed

CVE-2017-11393 was published May 17, 2022

A malicious application may be able to break out of its sandbox. This issue is fixed in macOS Big... High Unreviewed

CVE-2021-30688 was published May 24, 2022

A path handling issue was addressed with improved validation. This issue is fixed in macOS Big... Moderate Unreviewed

CVE-2021-30721 was published May 24, 2022

When a user opens manipulated files received from untrusted sources in SAP 3D Visual Enterprise... Moderate Unreviewed

CVE-2021-38174 was published May 24, 2022

The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) devices... High Unreviewed

CVE-2017-9497 was published May 17, 2022

It was discovered that the get_pid_info() function in data/apport did not properly parse the ... High Unreviewed

CVE-2021-25682 was published May 24, 2022

An improper input validation vulnerability in libsapeextractor library prior to SMR Sep-2021... Critical Unreviewed

CVE-2021-25449 was published May 24, 2022

When a user opens manipulated Scalable Vector Graphics (.svg, svg.x3d) files received from... Moderate Unreviewed

CVE-2022-32243 was published Jun 15, 2022

A possible guessing and confirming a byte memory vulnerability in Widevine trustlet prior to SMR... Moderate Unreviewed

CVE-2021-25468 was published May 24, 2022

Adobe Creative Cloud Desktop Application for macOS version 5.3 (and earlier) is affected by a... High Unreviewed

CVE-2021-28547 was published May 24, 2022

Static code injection vulnerability in gooplecms/admin/account/action/editpass.php in Goople CMS... High Unreviewed

CVE-2008-6119 was published May 17, 2022

Improper validation of tag id while RRC sending tag id to MAC can lead to TOCTOU race condition... High Unreviewed

CVE-2021-35111 was published Jun 15, 2022

Improper input validation in TrustZone memory transfer interface can lead to information... Moderate Unreviewed

CVE-2021-30338 was published Jun 15, 2022

The Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware allows remote attackers... High Unreviewed

CVE-2008-5826 was published May 17, 2022

A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may... Low Unreviewed

CVE-2021-22453 was published May 24, 2022

CRLF injection vulnerability in Quassel Core before 0.3.0.3 allows remote attackers to spoof IRC... High Unreviewed

CVE-2008-5657 was published May 17, 2022

Improper input validation for some Intel(R) PROSet/Wireless WiFi products may allow an... Moderate Unreviewed

CVE-2022-21212 was published Aug 19, 2022

Improper input validation for some Intel(R) PROSet/Wireless WiFi products may allow an... High Unreviewed

CVE-2022-21197 was published Aug 19, 2022

Unrestricted file upload vulnerability in Yehe 2.0 allows remote attackers to execute arbitrary... Moderate Unreviewed

CVE-2008-6568 was published May 17, 2022

When a user opens manipulated Radiance Picture (.hdr, hdr.x3d) files received from untrusted... Moderate Unreviewed

CVE-2022-32242 was published Jun 15, 2022

When a user opens manipulated Portable Document Format (.pdf, PDFView.x3d) files received from... Moderate Unreviewed

CVE-2022-32241 was published Jun 15, 2022

When a user opens manipulated Jupiter Tesselation (.jt, JTReader.x3d) files received from... Moderate Unreviewed

CVE-2022-32240 was published Jun 15, 2022

The Cisco Application-hosting Framework (CAF) component in Cisco IOS 15.6(1)T1 and IOS XE, when... Moderate Unreviewed

CVE-2016-6412 was published May 17, 2022

Previous 1…16…400 Next

Previous 1 2 … 14 15 16 17 18 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

11,577 advisories