Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
A vulnerability has been found in OWASP NodeGoat and classified as problematic. This... High Unreviewed
CVE-2021-4247 was published Dec 18, 2022
A vulnerability was found in xml-conduit. It has been classified as problematic. Affected is an... High Unreviewed
CVE-2021-4249 was published Dec 18, 2022
HuTool vulnerable to Uncontrolled Resource Consumption High
CVE-2022-4565 was published for cn.hutool:hutool-core (Maven) Dec 16, 2022
If Ethernet communication of the JTEKT Corporation TOYOPUC product series’ (TOYOPUC-PC10 Series:... High Unreviewed
CVE-2021-27458 was published May 24, 2022
An issue with ARP packets in Arista’s EOS affecting the 7800R3, 7500R3, and 7280R3 series of... High Unreviewed
CVE-2020-24360 was published May 24, 2022
Belledonne Belle-sip before 5.0.20 can crash applications such as Linphone via " \ " in the... High Unreviewed
CVE-2021-43611 was published May 24, 2022
A vulnerability affecting F-Secure antivirus engine was discovered whereby unpacking UPX file can... Moderate Unreviewed
CVE-2021-40833 was published May 24, 2022
A vulnerability was found in Axiomatic Bento4 and classified as problematic. This issue affects... Moderate Unreviewed
CVE-2022-3669 was published Oct 27, 2022
A vulnerability has been found in Axiomatic Bento4 and classified as problematic. This... Moderate Unreviewed
CVE-2022-3668 was published Oct 27, 2022
A vulnerability in an API of the Call Bridge feature of Cisco Meeting Server could allow an... High Unreviewed
CVE-2021-40122 was published May 24, 2022
In BIG-IP Versions 16.1.x before 16.1.2.2, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when... High Unreviewed
CVE-2022-35240 was published Aug 5, 2022
In BIG-IP Versions 17.0.x before 17.0.0.1 and 16.1.x before 16.1.3.1, when source-port preserve... Moderate Unreviewed
CVE-2022-35272 was published Aug 5, 2022
A vulnerability was found in ghostlander Phoenixcoin. It has been classified as problematic.... High Unreviewed
CVE-2017-20154 was published Dec 30, 2022
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it... High Unreviewed
CVE-2021-1098 was published May 24, 2022
In Phoenix Contact FL SWITCH SMCS series products in multiple versions fragmented TCP-Packets may... Moderate Unreviewed
CVE-2021-21003 was published May 24, 2022
Firefox for Android would become unstable and hard-to-recover when a website opened too many... Moderate Unreviewed
CVE-2021-29962 was published May 24, 2022
An attacker could send a specially crafted message to Crimson 3.1 (Build versions prior to 3119... Moderate Unreviewed
CVE-2020-27283 was published May 24, 2022
An issue was discovered in res_pjsip_session.c in Digium Asterisk through 13.38.1; 14.x, 15.x,... Moderate Unreviewed
CVE-2021-26906 was published May 24, 2022
A vulnerability has been found in Open5GS up to 2.4.10 and classified as problematic. This... High Unreviewed
CVE-2022-3354 was published Sep 29, 2022
A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13... Moderate Unreviewed
CVE-2020-26411 was published May 24, 2022
A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR... High Unreviewed
CVE-2020-26070 was published May 24, 2022
D-Link Wireless AC1200 Dual Band VDSL ADSL Modem Router DSL-3782 Firmware v1.01 allows... Moderate Unreviewed
CVE-2022-35191 was published Aug 24, 2022
D-link DIR-816 A2_v1.10CNB04.img reboots the router without authentication via /goform/doReboot.... High Unreviewed
CVE-2022-37133 was published Aug 23, 2022
A vulnerability was found in Linux Kernel. It has been rated as problematic. This issue affects... Moderate Unreviewed
CVE-2022-3630 was published Oct 21, 2022
Failing DTLS handshakes may cause throttling to block processing of records High
CVE-2022-39368 was published for org.eclipse.californium:scandium (Maven) Nov 9, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database