GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
186 advisories
Filter by severity
An information leak was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1...
High
Unreviewed
CVE-2020-25869
was published
May 24, 2022
In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could...
High
Unreviewed
CVE-2020-10604
was published
May 24, 2022
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10.0 (MTK...
High
Unreviewed
CVE-2020-11875
was published
May 24, 2022
In a certain condition, receipt of a specific BGP UPDATE message might cause Juniper Networks...
High
Unreviewed
CVE-2020-1632
was published
May 24, 2022
selectExpander in select.c in SQLite 3.30.1 proceeds with WITH stack unwinding even after a...
High
Unreviewed
CVE-2019-20218
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580, Modicon BMENOC 0311, and...
High
Unreviewed
CVE-2019-6848
was published
May 24, 2022
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain...
High
Unreviewed
CVE-2019-14287
was published
May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly...
High
Unreviewed
CVE-2019-1342
was published
May 24, 2022
The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash...
High
Unreviewed
CVE-2019-0060
was published
May 24, 2022
Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a...
High
Unreviewed
CVE-2019-16866
was published
May 24, 2022
In a rare scenario, Check Point R80.30 Security Gateway before JHF Take 50 managed by Check Point...
High
Unreviewed
CVE-2019-8462
was published
May 24, 2022
An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software...
High
Unreviewed
CVE-2019-5031
was published
May 24, 2022
An issue was discovered in 3S-Smart CODESYS before 3.5.15.0 . Crafted network packets cause the...
High
Unreviewed
CVE-2019-9009
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists Modicon M580 (firmware version prior to V2.90)...
High
Unreviewed
CVE-2019-6828
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware version prior to V2...
High
Unreviewed
CVE-2019-6829
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists IN Modicon M580 all versions prior to V2.80,...
High
Unreviewed
CVE-2019-6830
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware versions prior to V2...
High
Unreviewed
CVE-2019-6809
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon...
High
Unreviewed
CVE-2019-6807
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon...
High
Unreviewed
CVE-2018-7852
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon...
High
Unreviewed
CVE-2018-7849
was published
May 24, 2022
A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco...
High
Unreviewed
CVE-2019-1858
was published
May 24, 2022
Legacy C++ Facebook Thrift servers (using cpp instead of cpp2) would not error upon receiving...
High
Unreviewed
CVE-2019-3565
was published
May 24, 2022
Python Facebook Thrift servers would not error upon receiving messages with containers of fields...
High
Unreviewed
CVE-2019-3558
was published
May 24, 2022
C++ Facebook Thrift servers (using cpp2) would not error upon receiving messages with containers...
High
Unreviewed
CVE-2019-3552
was published
May 24, 2022
Java Facebook Thrift servers would not error upon receiving messages with containers of fields of...
High
Unreviewed
CVE-2019-3559
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API