Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+

186 advisories

In updateDrawable of StatusBarIconView.java, there is a possible permission bypass due to an... High Unreviewed
CVE-2021-0478 was published May 24, 2022
Mintty before 3.4.7 mishandles Bracketed Paste Mode. High Unreviewed
CVE-2021-31701 was published May 24, 2022
rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code... High Unreviewed
CVE-2021-33477 was published May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... High Unreviewed
CVE-2021-25662 was published May 24, 2022
Due to a vulnerability in DDoS protection in Juniper Networks Junos OS and Junos OS Evolved on... High Unreviewed
CVE-2021-0259 was published May 24, 2022
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent,... High Unreviewed
CVE-2021-0240 was published May 24, 2022
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent,... High Unreviewed
CVE-2021-0241 was published May 24, 2022
In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue.... High Unreviewed
CVE-2021-28876 was published May 24, 2022
Improper handling of exceptional conditions in Bixby prior to version 3.0.53.02 allows attacker... High Unreviewed
CVE-2021-25380 was published May 24, 2022
An improper exception control in softsimd prior to SMR APR-2021 Release 1 allows unprivileged... High Unreviewed
CVE-2021-25365 was published May 24, 2022
RRC sends a connection establishment success to NAS even though connection setup validation... High Unreviewed
CVE-2020-11243 was published May 24, 2022
In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4... High Unreviewed
CVE-2020-7468 was published May 24, 2022
There is a denial of service vulnerability in some huawei products. In specific scenarios, due to... High Unreviewed
CVE-2020-9213 was published May 24, 2022
decompress_gunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huft_build result... High Unreviewed
CVE-2021-28831 was published May 24, 2022
An attacker-controlled memory allocation size can be passed to the C++ new operator in RnaDaSvr... High Unreviewed
CVE-2020-5802 was published May 24, 2022
An attacker can craft and send an OpenNamespace message to port 4241 with valid session-id that... High Unreviewed
CVE-2020-5801 was published May 24, 2022
An unauthenticated remote attacker can send data to RsvcHost.exe listening on TCP port 5241 to... High Unreviewed
CVE-2020-5807 was published May 24, 2022
Improper check or handling of exceptional conditions in MELSEC iQ-F series FX5U(C) CPU unit... High Unreviewed
CVE-2020-5665 was published May 24, 2022
Visual Components (owned by KUKA) is a robotic simulator that allows simulating factories and... High Unreviewed
CVE-2020-10292 was published May 24, 2022
A security feature bypass vulnerability exists in Microsoft Word software when it fails to... High Unreviewed
CVE-2020-16933 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2020-16895 was published May 24, 2022
When SAML authentication is enabled, Juniper Networks Mist Cloud UI might incorrectly handle SAML... High Unreviewed
CVE-2020-1676 was published May 24, 2022
A privilege escalation vulnerability exists in the Duo Authentication for Windows Logon and RDP... High Unreviewed
CVE-2020-3427 was published May 24, 2022
In appendFormatV of String8.cpp, there is a possible out of bounds write due to incorrect error... High Unreviewed
CVE-2020-0421 was published May 24, 2022
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to execute arbitrary code on the... High Unreviewed
CVE-2020-4302 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API