GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
186 advisories
Filter by severity
Denial of service due to incorrect application of event authorization rules
High
CVE-2022-31152
was published
for
matrix-synapse
(pip)
Aug 31, 2022
Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager,...
High
Unreviewed
CVE-2022-36923
was published
Aug 11, 2022
Improper Handling of Exceptional Conditions in Newtonsoft.Json
High
CVE-2024-21907
was published
for
Newtonsoft.Json
(NuGet)
Jun 22, 2022
A maliciously crafted PDF file may be used to dereference a pointer for read or write operation...
High
Unreviewed
CVE-2022-27872
was published
Jun 22, 2022
mwlib 0.13 through 0.13.4 has a denial of service vulnerability when parsing #iferror magic...
High
Unreviewed
CVE-2012-1109
was published
May 24, 2022
issues with partially successful P2M updates on x86 T[his CNA information record relates to...
High
Unreviewed
CVE-2021-28709
was published
May 24, 2022
issues with partially successful P2M updates on x86 T[his CNA information record relates to...
High
Unreviewed
CVE-2021-28705
was published
May 24, 2022
An improper handling of exceptional conditions vulnerability exists in Palo Alto Networks...
High
Unreviewed
CVE-2021-3063
was published
May 24, 2022
In NLnet Labs Routinator prior to 0.10.2, a validation run can be delayed significantly by an...
High
Unreviewed
CVE-2021-43173
was published
May 24, 2022
A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco...
High
Unreviewed
CVE-2021-34781
was published
May 24, 2022
In CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56...
High
Unreviewed
CVE-2021-34593
was published
May 24, 2022
An Improper Handling of Exceptional Conditions vulnerability in the processing of a transit or...
High
Unreviewed
CVE-2021-0299
was published
May 24, 2022
An Improper Handling of Exceptional Conditions vulnerability in Juniper Networks Junos OS and...
High
Unreviewed
CVE-2021-31353
was published
May 24, 2022
Improper Handling of Exceptional Conditions vulnerability in GOT2000 series GT21 model GT2107...
High
Unreviewed
CVE-2021-20602
was published
May 24, 2022
Improper handling of exceptional conditions in SuiteLink server while processing command 0x01
High
Unreviewed
CVE-2021-32999
was published
May 24, 2022
An improper handling of exceptional conditions vulnerability exists in the Palo Alto Networks PAN...
High
Unreviewed
CVE-2021-3053
was published
May 24, 2022
A vulnerability in an API endpoint of Cisco Application Policy Infrastructure Controller (APIC)...
High
Unreviewed
CVE-2021-1578
was published
May 24, 2022
There is a denial of service vulnerability in some huawei products. In specific scenarios, due to...
High
Unreviewed
CVE-2021-22328
was published
May 24, 2022
A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco...
High
Unreviewed
CVE-2021-34716
was published
May 24, 2022
An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It...
High
Unreviewed
CVE-2021-39242
was published
May 24, 2022
When curl is instructed to download content using the metalink feature, thecontents is verified...
High
Unreviewed
CVE-2021-22922
was published
May 24, 2022
All versions of the CODESYS V3 Runtime Toolkit for VxWorks from version V3.5.8.0 and before...
High
Unreviewed
CVE-2021-33486
was published
May 24, 2022
An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net:...
High
Unreviewed
CVE-2021-32066
was published
May 24, 2022
An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-005. Hashing is mishandled for...
High
Unreviewed
CVE-2021-34549
was published
May 24, 2022
A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG...
High
Unreviewed
CVE-2021-27042
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API