Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

131 advisories

Loading
A vulnerability has been found in Open5GS up to 2.4.10 and classified as problematic. This... High Unreviewed
CVE-2022-3354 was published Sep 29, 2022
D-link DIR-816 A2_v1.10CNB04.img reboots the router without authentication via /goform/doReboot.... High Unreviewed
CVE-2022-37133 was published Aug 23, 2022
In BIG-IP Versions 16.1.x before 16.1.2.2, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when... High Unreviewed
CVE-2022-35240 was published Aug 5, 2022
A vulnerability classified as critical has been found in TEM FLEX-1085 1.6.0. Affected is an... High Unreviewed
CVE-2022-2591 was published Aug 2, 2022
Jetty SslConnection does not release pooled ByteBuffers in case of errors High
CVE-2022-2191 was published for org.eclipse.jetty:jetty-server (Maven) Jul 7, 2022
If Ethernet communication of the JTEKT Corporation TOYOPUC product series’ (TOYOPUC-PC10 Series:... High Unreviewed
CVE-2021-27458 was published May 24, 2022
An issue with ARP packets in Arista’s EOS affecting the 7800R3, 7500R3, and 7280R3 series of... High Unreviewed
CVE-2020-24360 was published May 24, 2022
Belledonne Belle-sip before 5.0.20 can crash applications such as Linphone via " \ " in the... High Unreviewed
CVE-2021-43611 was published May 24, 2022
A vulnerability in an API of the Call Bridge feature of Cisco Meeting Server could allow an... High Unreviewed
CVE-2021-40122 was published May 24, 2022
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it... High Unreviewed
CVE-2021-1098 was published May 24, 2022
A flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7... High Unreviewed
CVE-2019-19343 was published May 24, 2022
A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR... High Unreviewed
CVE-2020-26070 was published May 24, 2022
A vulnerability in the SIP inspection process of Cisco Adaptive Security Appliance (ASA) Software... High Unreviewed
CVE-2020-3555 was published May 24, 2022
xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak. High Unreviewed
CVE-2019-20388 was published May 24, 2022
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU... High Unreviewed
CVE-2019-19331 was published May 24, 2022
ClamAV versions prior to 0.101.3 are susceptible to a zip bomb vulnerability where an... High Unreviewed
CVE-2019-12625 was published May 24, 2022
A vulnerability in the Secure Shell (SSH) session management for Cisco Wireless LAN Controller ... High Unreviewed
CVE-2019-15262 was published May 24, 2022
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before... High Unreviewed
CVE-2019-5603 was published May 24, 2022
A denial of service vulnerability was reported in Lenovo System Update before version 5.07.0084... High Unreviewed
CVE-2019-6163 was published May 24, 2022
A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual... High Unreviewed
CVE-2019-1706 was published May 24, 2022
A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE)... High Unreviewed
CVE-2019-1708 was published May 24, 2022
Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service. High Unreviewed
CVE-2012-2805 was published May 17, 2022
The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement... High Unreviewed
CVE-2015-3415 was published May 14, 2022
Improper socket reuse in Apache Tomcat High
CVE-2022-25762 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2018-8611 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database