Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,680
Erlang
29
GitHub Actions
16
Go
1,707
Maven
4,940
npm
3,473
NuGet
603
pip
2,993
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

218,414 advisories

Uncontrolled Resource Consumption in node High Unreviewed
CVE-2020-8277 was published Apr 14, 2021
Regular expression denial of service in Rapid7 Metasploit High Unreviewed
CVE-2019-5645 was published May 5, 2021
Incorrect Calculation and Use of Insufficiently Random Values in Python Moderate Unreviewed
CVE-2020-14422 was published May 11, 2021
Sensitive Data Exposure in Openshift Container Platform Moderate Unreviewed
CVE-2019-10213 was published May 17, 2021
MinIO Admin API security issue High Unreviewed
CVE-2020-11012 was published May 24, 2021
vadmeste aead
Information Disclosure in OpenShift Container Platform Moderate Unreviewed
CVE-2020-10712 was published May 25, 2021
Cross-site scripting in Zimbra Moderate Unreviewed
CVE-2020-11737 was published May 25, 2021
Out-of-bounds Read and Missing Release of Memory after Effective Lifetime in tar Moderate Unreviewed
CVE-2021-20193 was published May 27, 2021
Unvalidated redirects Moderate Unreviewed
CVE-2021-35206 was published Jun 23, 2021
Out-of-Bounds Read in Node.js High Unreviewed
CVE-2021-22918 was published Jul 13, 2021
Incorrect Permission Assignment for Critical Resource in Node High Unreviewed
CVE-2021-22921 was published Jul 13, 2021
Use After Free in node.js Critical Unreviewed
CVE-2021-22930 was published Oct 8, 2021
SmarterTools SmarterMail 16.x through 100.x before 100.0.7803 allows XSS. Moderate Unreviewed
CVE-2021-43977 was published Nov 17, 2021
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability... Moderate Unreviewed
CVE-2021-29861 was published Nov 17, 2021
SmarterTools SmarterMail 16.x through 100.x before 100.0.7803 allows remote code execution. Critical Unreviewed
CVE-2021-32234 was published Nov 17, 2021
The importFromRedirection AJAX action of the SEO Redirection Plugin – 301 Redirect Manager... High Unreviewed
CVE-2021-24847 was published Nov 17, 2021
Adobe InDesign versions 16.4 (and earlier) are affected by a Buffer Overflow vulnerability when... High Unreviewed
CVE-2021-42731 was published Nov 17, 2021
Insufficient validation of guest context in the SNP Firmware could lead to a potential loss of... Moderate Unreviewed
CVE-2021-26327 was published Nov 17, 2021
A potential vulnerability exists in AMD Platform Security Processor (PSP) that may allow an... High Unreviewed
CVE-2020-12961 was published Nov 17, 2021
PSP protection against improperly configured side channels may lead to potential information... Moderate Unreviewed
CVE-2021-26312 was published Nov 17, 2021
Modern DRAM devices (PC-DDR4, LPDDR4X) are affected by a vulnerability in their internal Target... Critical Unreviewed
CVE-2021-42114 was published Nov 17, 2021
A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution... High Unreviewed
CVE-2021-42385 was published Nov 17, 2021
Out of Bounds Write and Read in AMD Graphics Driver for Windows 10 in Escape 0x6002d03 may lead... High Unreviewed
CVE-2020-12903 was published Nov 17, 2021
Out of Bounds Read in AMD Graphics Driver for Windows 10 in Escape 0x3004203 may lead to... Moderate Unreviewed
CVE-2020-12904 was published Nov 17, 2021
Improper access control in the software installer for the Intel(R) Serial IO driver for Intel(R)... High Unreviewed
CVE-2021-33118 was published Nov 18, 2021
ProTip! Advisories are also available from the GraphQL API