Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

13 advisories

Loading
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3).... High Unreviewed
CVE-2017-12735 was published May 13, 2022
It was discovered that the fix for CVE-2017-12151 was not properly shipped in erratum RHSA-2017... High Unreviewed
CVE-2017-15086 was published May 13, 2022
A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a... High Unreviewed
CVE-2019-14899 was published May 24, 2022
A vulnerability found in EdgeMAX EdgeRouter V2.0.9 and earlier could allow a malicious actor to... High Unreviewed
CVE-2021-22909 was published May 24, 2022
When an authenticated password change request takes place, this vulnerability could allow the... High Unreviewed
CVE-2021-32926 was published May 24, 2022
In all released versions of Eclipse Equinox, at least until version 4.21 (September 2021),... High Unreviewed
CVE-2021-41033 was published May 24, 2022
Channel Accessible by Non-Endpoint vulnerability in CBOT Chatbot allows Adversary in the Middle ... High Unreviewed
CVE-2023-2885 was published May 25, 2023
An authentication bypass vulnerability exists in the CiRpcServerThread() functionality of... High Unreviewed
CVE-2023-32634 was published Oct 12, 2023
Go package github.com/edgelesssys/marblerun CLI commands susceptible to MITM attacks High
GHSA-j3rq-4xjw-xg63 was published for github.com/edgelesssys/marblerun (Go) Dec 4, 2023
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0... High Unreviewed
CVE-2023-31004 was published Feb 3, 2024
dectalk-tts Uses Unencrypted HTTP Request High
CVE-2024-31206 was published for dectalk-tts (npm) Apr 4, 2024
AverageHelper JstnMcBrd
BIG-IP Next Central Manager (CM) may allow an unauthenticated, remote attacker to obtain the BIG... High Unreviewed
CVE-2024-32049 was published May 8, 2024
ntlk unsafe deserialization vulnerability High
CVE-2024-39705 was published for nltk (pip) Jun 28, 2024
justinrosenthal ekaf
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database