GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,539

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

173 advisories

Filter by severity

Sort by

Least recently updated

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed

CVE-2020-16895 was published May 24, 2022

When SAML authentication is enabled, Juniper Networks Mist Cloud UI might incorrectly handle SAML... High Unreviewed

CVE-2020-1676 was published May 24, 2022

A privilege escalation vulnerability exists in the Duo Authentication for Windows Logon and RDP... High Unreviewed

CVE-2020-3427 was published May 24, 2022

In appendFormatV of String8.cpp, there is a possible out of bounds write due to incorrect error... High Unreviewed

CVE-2020-0421 was published May 24, 2022

IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to execute arbitrary code on the... High Unreviewed

CVE-2020-4302 was published May 24, 2022

An information leak was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1... High Unreviewed

CVE-2020-25869 was published May 24, 2022

In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could... High Unreviewed

CVE-2020-10604 was published May 24, 2022

An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10.0 (MTK... High Unreviewed

CVE-2020-11875 was published May 24, 2022

In a certain condition, receipt of a specific BGP UPDATE message might cause Juniper Networks... High Unreviewed

CVE-2020-1632 was published May 24, 2022

smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products,... High Unreviewed

CVE-2020-7247 was published May 24, 2022

selectExpander in select.c in SQLite 3.30.1 proceeds with WITH stack unwinding even after a... High Unreviewed

CVE-2019-20218 was published May 24, 2022

A CWE-248: Uncaught Exception vulnerability exists in Modicon M580, Modicon BMENOC 0311, and... High Unreviewed

CVE-2019-6848 was published May 24, 2022

In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain... High Unreviewed

CVE-2019-14287 was published May 24, 2022

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed

CVE-2019-1342 was published May 24, 2022

The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash... High Unreviewed

CVE-2019-0060 was published May 24, 2022

Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a... High Unreviewed

CVE-2019-16866 was published May 24, 2022

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software... High Unreviewed

CVE-2019-5031 was published May 24, 2022

In a rare scenario, Check Point R80.30 Security Gateway before JHF Take 50 managed by Check Point... High Unreviewed

CVE-2019-8462 was published May 24, 2022

An issue was discovered in 3S-Smart CODESYS before 3.5.15.0 . Crafted network packets cause the... High Unreviewed

CVE-2019-9009 was published May 24, 2022

A CWE-248: Uncaught Exception vulnerability exists IN Modicon M580 all versions prior to V2.80,... High Unreviewed

CVE-2019-6830 was published May 24, 2022

A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware version prior to V2... High Unreviewed

CVE-2019-6829 was published May 24, 2022

A CWE-248: Uncaught Exception vulnerability exists Modicon M580 (firmware version prior to V2.90)... High Unreviewed

CVE-2019-6828 was published May 24, 2022

A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware versions prior to V2... High Unreviewed

CVE-2019-6809 was published May 24, 2022

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon... High Unreviewed

CVE-2019-6807 was published May 24, 2022

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon... High Unreviewed

CVE-2018-7852 was published May 24, 2022

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

173 advisories