Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,810
Erlang
36
GitHub Actions
31
Go
2,395
Maven
5,000+
npm
4,030
NuGet
721
pip
3,820
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

150 advisories

Loading
Multiple Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products... High Unreviewed
CVE-2022-28887 was published Oct 12, 2022
In Wi-Fi driver, there is a possible way to disconnect Wi-Fi due to an improper resource release.... High Unreviewed
CVE-2022-32589 was published Oct 8, 2022
A vulnerability in /src/amf/amf-context.c in Open5GS 2.4.10 and earlier leads to AMF denial of... High Unreviewed
CVE-2022-40890 was published Sep 30, 2022
A vulnerability has been found in Open5GS up to 2.4.10 and classified as problematic. This... High Unreviewed
CVE-2022-3354 was published Sep 29, 2022
D-link DIR-816 A2_v1.10CNB04.img reboots the router without authentication via /goform/doReboot.... High Unreviewed
CVE-2022-37133 was published Aug 23, 2022
In BIG-IP Versions 16.1.x before 16.1.2.2, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when... High Unreviewed
CVE-2022-35240 was published Aug 5, 2022
A vulnerability classified as critical has been found in TEM FLEX-1085 1.6.0. Affected is an... High Unreviewed
CVE-2022-2591 was published Aug 2, 2022
If Ethernet communication of the JTEKT Corporation TOYOPUC product series’ (TOYOPUC-PC10 Series:... High Unreviewed
CVE-2021-27458 was published May 24, 2022
An issue with ARP packets in Arista’s EOS affecting the 7800R3, 7500R3, and 7280R3 series of... High Unreviewed
CVE-2020-24360 was published May 24, 2022
Belledonne Belle-sip before 5.0.20 can crash applications such as Linphone via " \ " in the... High Unreviewed
CVE-2021-43611 was published May 24, 2022
A vulnerability in an API of the Call Bridge feature of Cisco Meeting Server could allow an... High Unreviewed
CVE-2021-40122 was published May 24, 2022
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it... High Unreviewed
CVE-2021-1098 was published May 24, 2022
A flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7... High Unreviewed
CVE-2019-19343 was published May 24, 2022
A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR... High Unreviewed
CVE-2020-26070 was published May 24, 2022
A vulnerability in the SIP inspection process of Cisco Adaptive Security Appliance (ASA) Software... High Unreviewed
CVE-2020-3555 was published May 24, 2022
xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak. High Unreviewed
CVE-2019-20388 was published May 24, 2022
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU... High Unreviewed
CVE-2019-19331 was published May 24, 2022
ClamAV versions prior to 0.101.3 are susceptible to a zip bomb vulnerability where an... High Unreviewed
CVE-2019-12625 was published May 24, 2022
A vulnerability in the Secure Shell (SSH) session management for Cisco Wireless LAN Controller ... High Unreviewed
CVE-2019-15262 was published May 24, 2022
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before... High Unreviewed
CVE-2019-5603 was published May 24, 2022
A denial of service vulnerability was reported in Lenovo System Update before version 5.07.0084... High Unreviewed
CVE-2019-6163 was published May 24, 2022
A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual... High Unreviewed
CVE-2019-1706 was published May 24, 2022
A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE)... High Unreviewed
CVE-2019-1708 was published May 24, 2022
Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service. High Unreviewed
CVE-2012-2805 was published May 17, 2022
The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement... High Unreviewed
CVE-2015-3415 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database