GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
160 advisories
Filter by severity
A vulnerability in the Protocol Independent Multicast (PIM) feature for IPv6 networks (PIM6) of...
Moderate
Unreviewed
CVE-2020-3338
was published
May 24, 2022
A user authorized to perform database queries may cause denial of service by issuing specially...
Moderate
Unreviewed
CVE-2020-7923
was published
May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** An issue was discovered in ReadyTalk Avian 1.2.0. The vm:...
Moderate
Unreviewed
CVE-2020-17361
was published
May 24, 2022
An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a host OS crash...
Moderate
Unreviewed
CVE-2020-15566
was published
May 24, 2022
The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled...
Moderate
Unreviewed
CVE-2020-12888
was published
May 24, 2022
OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which...
Moderate
Unreviewed
CVE-2020-12105
was published
May 24, 2022
When an attacker sends a specific crafted Ethernet Operation, Administration, and Maintenance ...
Moderate
Unreviewed
CVE-2020-1639
was published
May 24, 2022
SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window...
Moderate
Unreviewed
CVE-2019-19924
was published
May 24, 2022
Unhandled exception in firmware for Intel(R) Ethernet 700 Series Controllers before version 7.0...
Moderate
Unreviewed
CVE-2019-0144
was published
May 24, 2022
Unhandled exception in Kernel-mode drivers for Intel(R) Ethernet 700 Series Controllers versions...
Moderate
Unreviewed
CVE-2019-0143
was published
May 24, 2022
A flaw was found in the Ceph RGW configuration with Beast as the front end handling client...
Moderate
Unreviewed
CVE-2019-10222
was published
May 24, 2022
An issue was discovered in the Currency Switcher addon before 2.11.2 for WooCommerce if a user...
Moderate
Unreviewed
CVE-2019-18668
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA...
Moderate
Unreviewed
CVE-2019-6841
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA...
Moderate
Unreviewed
CVE-2019-6844
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA...
Moderate
Unreviewed
CVE-2019-6842
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA...
Moderate
Unreviewed
CVE-2019-6843
was published
May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA...
Moderate
Unreviewed
CVE-2019-6847
was published
May 24, 2022
SSL-Proxy feature on SRX devices fails to handle a hardware resource limitation which can be...
Moderate
Unreviewed
CVE-2019-0051
was published
May 24, 2022
A vulnerability in the Secure Sockets Layer (SSL) VPN feature of Cisco Adaptive Security...
Moderate
Unreviewed
CVE-2019-12677
was published
May 24, 2022
Zcashd in Zcash before 2.0.7-3 allows discovery of the IP address of a full node that owns a...
Moderate
Unreviewed
CVE-2019-16930
was published
May 24, 2022
A vulnerability has been identified in SIMATIC PCS 7 V8.0 and earlier (All versions), SIMATIC PCS...
Moderate
Unreviewed
CVE-2019-10917
was published
May 24, 2022
Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service ...
Moderate
Unreviewed
CVE-2014-1943
was published
May 17, 2022
Bento4 v1.6.0.0 was discovered to contain a segmentation fault via the component /x86_64...
Moderate
Unreviewed
CVE-2022-29017
was published
May 17, 2022
A vulnerability in SMART-SSL Accelerator functionality for Cisco Wide Area Application Services ...
Moderate
Unreviewed
CVE-2017-6628
was published
May 13, 2022
A vulnerability in the detection engine that handles Secure Sockets Layer (SSL) packets for Cisco...
Moderate
Unreviewed
CVE-2017-3887
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API