GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,539

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

173 advisories

Filter by severity

Sort by

Least recently updated

When curl is instructed to download content using the metalink feature, thecontents is verified... High Unreviewed

CVE-2021-22922 was published May 24, 2022

All versions of the CODESYS V3 Runtime Toolkit for VxWorks from version V3.5.8.0 and before... High Unreviewed

CVE-2021-33486 was published May 24, 2022

An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net:... High Unreviewed

CVE-2021-32066 was published May 24, 2022

An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-005. Hashing is mishandled for... High Unreviewed

CVE-2021-34549 was published May 24, 2022

A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG... High Unreviewed

CVE-2021-27042 was published May 24, 2022

In updateDrawable of StatusBarIconView.java, there is a possible permission bypass due to an... High Unreviewed

CVE-2021-0478 was published May 24, 2022

Mintty before 3.4.7 mishandles Bracketed Paste Mode. High Unreviewed

CVE-2021-31701 was published May 24, 2022

rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code... High Unreviewed

CVE-2021-33477 was published May 24, 2022

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... High Unreviewed

CVE-2021-25662 was published May 24, 2022

Due to a vulnerability in DDoS protection in Juniper Networks Junos OS and Junos OS Evolved on... High Unreviewed

CVE-2021-0259 was published May 24, 2022

On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent,... High Unreviewed

CVE-2021-0241 was published May 24, 2022

On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent,... High Unreviewed

CVE-2021-0240 was published May 24, 2022

In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue.... High Unreviewed

CVE-2021-28876 was published May 24, 2022

Improper handling of exceptional conditions in Bixby prior to version 3.0.53.02 allows attacker... High Unreviewed

CVE-2021-25380 was published May 24, 2022

An improper exception control in softsimd prior to SMR APR-2021 Release 1 allows unprivileged... High Unreviewed

CVE-2021-25365 was published May 24, 2022

RRC sends a connection establishment success to NAS even though connection setup validation... High Unreviewed

CVE-2020-11243 was published May 24, 2022

In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4... High Unreviewed

CVE-2020-7468 was published May 24, 2022

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to... High Unreviewed

CVE-2020-9213 was published May 24, 2022

decompress_gunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huft_build result... High Unreviewed

CVE-2021-28831 was published May 24, 2022

An attacker-controlled memory allocation size can be passed to the C++ new operator in RnaDaSvr... High Unreviewed

CVE-2020-5802 was published May 24, 2022

An attacker can craft and send an OpenNamespace message to port 4241 with valid session-id that... High Unreviewed

CVE-2020-5801 was published May 24, 2022

An unauthenticated remote attacker can send data to RsvcHost.exe listening on TCP port 5241 to... High Unreviewed

CVE-2020-5807 was published May 24, 2022

Improper check or handling of exceptional conditions in MELSEC iQ-F series FX5U(C) CPU unit... High Unreviewed

CVE-2020-5665 was published May 24, 2022

Visual Components (owned by KUKA) is a robotic simulator that allows simulating factories and... High Unreviewed

CVE-2020-10292 was published May 24, 2022

A security feature bypass vulnerability exists in Microsoft Word software when it fails to... High Unreviewed

CVE-2020-16933 was published May 24, 2022

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

173 advisories