Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,810
Erlang
36
GitHub Actions
31
Go
2,395
Maven
5,000+
npm
4,030
NuGet
721
pip
3,820
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+

167 advisories

Loading
For certificates that utilize the auto-renew feature in Puppet Server, a flaw exists which... High Unreviewed
CVE-2023-5255 was published Oct 3, 2023
DOS vulnerability that could allow an attacker to register a new VNF (Virtual Network Function)... High Unreviewed
CVE-2023-4882 was published Oct 3, 2023
The Call Blocker application 6.6.3 for Android incorrectly opens a key component that an attacker... High Unreviewed
CVE-2023-29726 was published May 31, 2023
A flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7... High Unreviewed
CVE-2019-19343 was published May 24, 2022
ClamAV versions prior to 0.101.3 are susceptible to a zip bomb vulnerability where an... High Unreviewed
CVE-2019-12625 was published May 24, 2022
A vulnerability in the Secure Shell (SSH) session management for Cisco Wireless LAN Controller ... High Unreviewed
CVE-2019-15262 was published May 24, 2022
A denial of service vulnerability was reported in Lenovo System Update before version 5.07.0084... High Unreviewed
CVE-2019-6163 was published May 24, 2022
Improper Resource Shutdown or Release in Apache Tomcat High
CVE-2017-5650 was published for org.apache.tomcat:tomcat (Maven) May 13, 2022
sunSUNQ
A vulnerability, which was classified as problematic, was found in Redis. Affected is the... High Unreviewed
CVE-2022-3647 was published Oct 21, 2022
A vulnerability was found in Uniway Router up to 2.0. It has been rated as critical. Affected by... High Unreviewed
CVE-2023-7209 was published Jan 7, 2024
xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak. High Unreviewed
CVE-2019-20388 was published May 24, 2022
A vulnerability classified as critical has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix... High Unreviewed
CVE-2023-2379 was published Apr 28, 2023
GoPistolet vulnerable to Improper Resource Shutdown or Release High
CVE-2015-10085 was published for github.com/gopistolet/gopistolet (Go) Feb 21, 2023
Resource leakage when decoding certificates and keys High
CVE-2022-1473 was published for openssl-src (Rust) May 4, 2022
pinkforest
A vulnerability in the SIP inspection process of Cisco Adaptive Security Appliance (ASA) Software... High Unreviewed
CVE-2020-3555 was published May 24, 2022
A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual... High Unreviewed
CVE-2019-1706 was published May 24, 2022
A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE)... High Unreviewed
CVE-2019-1708 was published May 24, 2022
Puma used with Rails may lead to Information Exposure High
CVE-2022-23634 was published for puma (RubyGems) Feb 11, 2022
byroot
A vulnerability, which was classified as problematic, has been found in X.org Server. Affected by... High Unreviewed
CVE-2022-3551 was published Oct 17, 2022
A vulnerability, which was classified as problematic, was found in X.org Server. This affects an... High Unreviewed
CVE-2022-3553 was published Oct 17, 2022
A vulnerability classified as critical has been found in TEM FLEX-1085 1.6.0. Affected is an... High Unreviewed
CVE-2022-2591 was published Aug 2, 2022
A vulnerability exists in a SDM600 endpoint. An attacker could exploit this vulnerability by... High Unreviewed
CVE-2022-3684 was published Mar 28, 2023
A vulnerability exists in the IEC 61850 communication stack that affects multiple Hitachi Energy... High Unreviewed
CVE-2022-3353 was published Feb 21, 2023
A vulnerability was found in Filseclab Twister Antivirus 8. It has been declared as problematic.... High Unreviewed
CVE-2023-1443 was published Mar 17, 2023
A vulnerability has been found in rtcwcoop 1.0.2 and classified as problematic. Affected by this... High Unreviewed
CVE-2019-25104 was published Feb 20, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database