GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,793
Erlang
29
GitHub Actions
16
Go
1,710
Maven
4,947
npm
3,475
NuGet
605
pip
3,001
Pub
10
RubyGems
828
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
159 advisories
Filter by severity
D-Link G416 httpd Improper Handling of Exceptional Conditions Information Disclosure...
Moderate
Unreviewed
CVE-2023-50212
was published
May 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: tls: handle backlogging...
Moderate
Unreviewed
CVE-2024-26584
was published
Feb 21, 2024
An Improper Handling of Exceptional Conditions vulnerability in Juniper Networks Junos OS and...
Moderate
Unreviewed
CVE-2024-30380
was published
Apr 16, 2024
An Improper Handling of Exceptional Conditions vulnerability in the Class of Service daemon (cosd...
Moderate
Unreviewed
CVE-2024-21610
was published
Apr 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
parisc: Clear stale IIR...
Moderate
Unreviewed
CVE-2021-46928
was published
Feb 27, 2024
OpenStack Neutron's unsupported dport option prevents applying security groups
Moderate
CVE-2019-9735
was published
for
neutron
(pip)
May 13, 2022
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows...
Moderate
Unreviewed
CVE-2023-3280
was published
Sep 13, 2023
A lack of custom error pages vulnerability [CWE-756] in FortiPresence versions 1.2.0 through 1.2...
Moderate
Unreviewed
CVE-2023-27998
was published
Sep 13, 2023
An Improper Handling of Unicode Encoding vulnerability in the Schweitzer Engineering...
Moderate
Unreviewed
CVE-2023-31169
was published
Aug 31, 2023
A lack of exception handling in the Renault Easy Link Multimedia System Software Version...
Moderate
Unreviewed
CVE-2023-39801
was published
Aug 24, 2023
Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80(ABXN.1), XMG1930-30...
Moderate
Unreviewed
CVE-2023-28768
was published
Aug 14, 2023
An authenticated attacker with guest privileges or higher can cause the iControl SOAP process to...
Moderate
Unreviewed
CVE-2023-38419
was published
Aug 2, 2023
An Improper Check or Handling of Exceptional Conditions vulnerability in packet processing on the...
Moderate
Unreviewed
CVE-2023-28970
was published
Apr 18, 2023
OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which...
Moderate
Unreviewed
CVE-2020-12105
was published
May 24, 2022
Unhandled exception in Kernel-mode drivers for Intel(R) Ethernet 700 Series Controllers versions...
Moderate
Unreviewed
CVE-2019-0143
was published
May 24, 2022
An issue was discovered in the Currency Switcher addon before 2.11.2 for WooCommerce if a user...
Moderate
Unreviewed
CVE-2019-18668
was published
May 24, 2022
Zcashd in Zcash before 2.0.7-3 allows discovery of the IP address of a full node that owns a...
Moderate
Unreviewed
CVE-2019-16930
was published
May 24, 2022
** DISPUTED ** Styra Open Policy Agent (OPA) Gatekeeper through 3.7.0 mishandles concurrency,...
Moderate
Unreviewed
CVE-2021-43979
was published
May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** An issue was discovered in ReadyTalk Avian 1.2.0. The vm:...
Moderate
Unreviewed
CVE-2020-17361
was published
May 24, 2022
Buffer Overflow vulnerability in baramundi software GmbH EMM Agent 23.1.50 and before allows an...
Moderate
Unreviewed
CVE-2023-37605
was published
Oct 2, 2023
JFrog Artifactory later than version 7.17.4 but prior to version 7.77.0 is vulnerable to an issue...
Moderate
Unreviewed
CVE-2023-42509
was published
Mar 7, 2024
fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle...
Moderate
Unreviewed
CVE-2008-4302
was published
May 2, 2022
lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call...
Moderate
Unreviewed
CVE-2022-33748
was published
Oct 11, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in Juniper DHCP Daemon ...
Moderate
Unreviewed
CVE-2023-36842
was published
Jan 12, 2024
A user authorized to perform database queries may cause denial of service by issuing a specially...
Moderate
Unreviewed
CVE-2020-7926
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API