GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
45 advisories
Filter by severity
A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP...
Moderate
Unreviewed
CVE-2021-3772
was published
Mar 4, 2022
A vulnerability was found in the Linux kernel's block_invalidatepage in fs/buffer.c in the...
Moderate
Unreviewed
CVE-2021-4148
was published
Mar 24, 2022
On all versions of 16.1.x, 15.1.x, 14.1.x, 13.1.x, 12.1.x, and 11.6.x of F5 BIG-IP Advanced WAF,...
Moderate
Unreviewed
CVE-2022-25946
was published
May 6, 2022
Improper Validation of Integrity Check Value in Bouncy Castle
Moderate
CVE-2018-5382
was published
for
org.bouncycastle:bcprov-jdk15on
(Maven)
May 13, 2022
The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) and Xfinity...
Moderate
Unreviewed
CVE-2017-9498
was published
May 13, 2022
A security feature bypass exists when Windows incorrectly validates CAB file signatures, aka ...
Moderate
Unreviewed
CVE-2019-1163
was published
May 24, 2022
An issue was discovered in Zoho ManageEngine AssetExplorer 6.5. During an upgrade of the Windows...
Moderate
Unreviewed
CVE-2020-8838
was published
May 24, 2022
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the service host...
Moderate
Unreviewed
CVE-2020-5964
was published
May 24, 2022
Improper validation of integrity check value vulnerability in Aterm SA3500G firmware versions...
Moderate
Unreviewed
CVE-2020-5637
was published
May 24, 2022
Moodle Grade information disclosure in grade's external fetch functions
Moderate
CVE-2021-20184
was published
for
moodle/moodle
(Composer)
May 24, 2022
There is an insufficient integrity check vulnerability in Huawei Sound X Product. The system does...
Moderate
Unreviewed
CVE-2020-9118
was published
May 24, 2022
Proofpoint Enterprise Protection (PPS/PoD) before 8.17.0 contains a vulnerability that could...
Moderate
Unreviewed
CVE-2020-14009
was published
May 24, 2022
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi...
Moderate
Unreviewed
CVE-2020-26141
was published
May 24, 2022
This issue was addressed with improved checks. This issue is fixed in Security Update 2021-004...
Moderate
Unreviewed
CVE-2021-1883
was published
May 24, 2022
The vulnerability allows a successful attacker to bypass the integrity check of FW uploaded to...
Moderate
Unreviewed
CVE-2021-22276
was published
May 24, 2022
Improper validation of integrity check vulnerability in Samsung USB Driver Windows Installer for...
Moderate
Unreviewed
CVE-2022-33711
was published
Jul 13, 2022
Honeywell Experion PKS Safety Manager 5.02 has Insufficient Verification of Data Authenticity....
Moderate
Unreviewed
CVE-2022-30316
was published
Jul 29, 2022
An exploitable firmware downgrade vulnerability was discovered on the Netgear WPN824EXT WiFi...
Moderate
Unreviewed
CVE-2022-38956
was published
Sep 21, 2022
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2...
Moderate
Unreviewed
CVE-2022-46402
was published
Dec 20, 2022
The use of the cyclic redundancy check (CRC) algorithm for integrity check during firmware update...
Moderate
Unreviewed
CVE-2023-23120
was published
Feb 2, 2023
The use of the cyclic redundancy check (CRC) algorithm for integrity check during firmware update...
Moderate
Unreviewed
CVE-2023-23119
was published
Feb 2, 2023
An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can...
Moderate
Unreviewed
CVE-2022-45191
was published
Feb 8, 2023
A vulnerability was found in ICEPAY REST-API-NET 0.9. It has been declared as problematic....
Moderate
Unreviewed
CVE-2016-15028
was published
Mar 12, 2023
Briar before 1.4.22 allows attackers to spoof other users' messages in a blog, forum, or private...
Moderate
Unreviewed
CVE-2023-33981
was published
May 24, 2023
An issue was discovered in systemd 253. An attacker can truncate a sealed log file and then...
Moderate
Unreviewed
CVE-2023-31438
was published
Jun 13, 2023
ProTip!
Advisories are also available from the
GraphQL API