GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,738
NuGet
663
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
75 advisories
Filter by severity
An Unchecked Input for Loop Condition vulnerability in a NAT library of Juniper Networks Junos OS...
Moderate
Unreviewed
CVE-2023-22409
was published
Jan 13, 2023
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V3.0.1),...
High
Unreviewed
CVE-2021-44693
was published
Dec 13, 2022
An Improper Validation of Specified Quantity in Input vulnerability in the routing protocol...
Moderate
Unreviewed
CVE-2022-22166
was published
Jan 20, 2022
ASUS RT-AX56U Wi-Fi Router is vulnerable to stack-based buffer overflow due to improper...
High
Unreviewed
CVE-2021-44158
was published
Jan 4, 2022
A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap...
High
Unreviewed
CVE-2021-46158
was published
Feb 10, 2022
NHI’s health insurance web service component has insufficient validation for input string length,...
High
Unreviewed
CVE-2021-45918
was published
Jun 21, 2022
For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling...
High
Unreviewed
CVE-2021-28510
was published
Jan 26, 2023
A stack-based buffer overflow vulnerability exists in both the LLMNR functionality of Sealevel...
Critical
Unreviewed
CVE-2021-21960
was published
Feb 10, 2022
An out-of-bounds write vulnerability exists in the CMD_DEVICE_GET_SERVER_LIST_REQUEST...
Critical
Unreviewed
CVE-2021-21951
was published
Dec 9, 2021
An out-of-bounds write vulnerability exists in the CMD_DEVICE_GET_SERVER_LIST_REQUEST...
Critical
Unreviewed
CVE-2021-21950
was published
Dec 9, 2021
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft...
High
Unreviewed
CVE-2021-21943
was published
Apr 15, 2022
DexLoader function get_stringidx_fromdex() in Redex prior to commit 3b44c64 can load an out of...
Critical
Unreviewed
CVE-2022-36938
was published
Nov 11, 2022
The Popup | Custom Popup Builder WordPress plugin before 1.3.1 autoload data from its popup on...
High
Unreviewed
CVE-2022-0214
was published
Feb 15, 2022
libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds...
High
Unreviewed
CVE-2022-2868
was published
Aug 18, 2022
In Open5GS 2.4.0, a crafted packet from UE can crash SGW-U/UPF.
High
Unreviewed
CVE-2021-45462
was published
Dec 24, 2021
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer driver...
Low
Unreviewed
CVE-2023-0195
was published
Apr 1, 2023
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer...
Moderate
Unreviewed
CVE-2023-0194
was published
Apr 1, 2023
A vulnerability was found in SourceCodester Card Holder Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2023-4439
was published
Aug 21, 2023
A vulnerability exists in the input validation of the GOOSE
messages where out of range values...
Moderate
Unreviewed
CVE-2023-4518
was published
Dec 1, 2023
A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the...
High
Unreviewed
CVE-2022-4904
was published
Mar 7, 2023
Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series...
High
Unreviewed
CVE-2022-20690
was published
Dec 12, 2022
Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series...
High
Unreviewed
CVE-2022-20689
was published
Dec 12, 2022
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Analog...
Moderate
Unreviewed
CVE-2022-20688
was published
Dec 12, 2022
Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA...
Moderate
Unreviewed
CVE-2022-20687
was published
Dec 12, 2022
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Adaptive...
Moderate
Unreviewed
CVE-2022-20691
was published
Dec 12, 2022
ProTip!
Advisories are also available from the
GraphQL API