Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+

186 advisories

Denial of service due to incorrect application of event authorization rules High
CVE-2022-31152 was published for matrix-synapse (pip) Aug 31, 2022
Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager,... High Unreviewed
CVE-2022-36923 was published Aug 11, 2022
Improper Handling of Exceptional Conditions in Newtonsoft.Json High
CVE-2024-21907 was published for Newtonsoft.Json (NuGet) Jun 22, 2022
ezsilmar JamesNK
A maliciously crafted PDF file may be used to dereference a pointer for read or write operation... High Unreviewed
CVE-2022-27872 was published Jun 22, 2022
mwlib 0.13 through 0.13.4 has a denial of service vulnerability when parsing #iferror magic... High Unreviewed
CVE-2012-1109 was published May 24, 2022
issues with partially successful P2M updates on x86 T[his CNA information record relates to... High Unreviewed
CVE-2021-28709 was published May 24, 2022
issues with partially successful P2M updates on x86 T[his CNA information record relates to... High Unreviewed
CVE-2021-28705 was published May 24, 2022
An improper handling of exceptional conditions vulnerability exists in Palo Alto Networks... High Unreviewed
CVE-2021-3063 was published May 24, 2022
In NLnet Labs Routinator prior to 0.10.2, a validation run can be delayed significantly by an... High Unreviewed
CVE-2021-43173 was published May 24, 2022
A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco... High Unreviewed
CVE-2021-34781 was published May 24, 2022
In CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56... High Unreviewed
CVE-2021-34593 was published May 24, 2022
An Improper Handling of Exceptional Conditions vulnerability in the processing of a transit or... High Unreviewed
CVE-2021-0299 was published May 24, 2022
An Improper Handling of Exceptional Conditions vulnerability in Juniper Networks Junos OS and... High Unreviewed
CVE-2021-31353 was published May 24, 2022
Improper Handling of Exceptional Conditions vulnerability in GOT2000 series GT21 model GT2107... High Unreviewed
CVE-2021-20602 was published May 24, 2022
Improper handling of exceptional conditions in SuiteLink server while processing command 0x01 High Unreviewed
CVE-2021-32999 was published May 24, 2022
An improper handling of exceptional conditions vulnerability exists in the Palo Alto Networks PAN... High Unreviewed
CVE-2021-3053 was published May 24, 2022
A vulnerability in an API endpoint of Cisco Application Policy Infrastructure Controller (APIC)... High Unreviewed
CVE-2021-1578 was published May 24, 2022
There is a denial of service vulnerability in some huawei products. In specific scenarios, due to... High Unreviewed
CVE-2021-22328 was published May 24, 2022
A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco... High Unreviewed
CVE-2021-34716 was published May 24, 2022
An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It... High Unreviewed
CVE-2021-39242 was published May 24, 2022
When curl is instructed to download content using the metalink feature, thecontents is verified... High Unreviewed
CVE-2021-22922 was published May 24, 2022
All versions of the CODESYS V3 Runtime Toolkit for VxWorks from version V3.5.8.0 and before... High Unreviewed
CVE-2021-33486 was published May 24, 2022
An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net:... High Unreviewed
CVE-2021-32066 was published May 24, 2022
An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-005. Hashing is mishandled for... High Unreviewed
CVE-2021-34549 was published May 24, 2022
A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG... High Unreviewed
CVE-2021-27042 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API