Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,951
Erlang
39
GitHub Actions
38
Go
2,607
Maven
5,000+
npm
4,251
NuGet
757
pip
4,017
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

177 advisories

Loading
A vulnerability was found in Uniway Router up to 2.0. It has been rated as critical. Affected by... High Unreviewed
CVE-2023-7209 was published Jan 7, 2024
xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak. High Unreviewed
CVE-2019-20388 was published May 24, 2022
A vulnerability classified as critical has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix... High Unreviewed
CVE-2023-2379 was published Apr 28, 2023
GoPistolet vulnerable to Improper Resource Shutdown or Release High
CVE-2015-10085 was published for github.com/gopistolet/gopistolet (Go) Feb 21, 2023
Resource leakage when decoding certificates and keys High
CVE-2022-1473 was published for openssl-src (Rust) May 4, 2022
pinkforest
Credited to pinkforest
A vulnerability in the SIP inspection process of Cisco Adaptive Security Appliance (ASA) Software... High Unreviewed
CVE-2020-3555 was published May 24, 2022
A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual... High Unreviewed
CVE-2019-1706 was published May 24, 2022
A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE)... High Unreviewed
CVE-2019-1708 was published May 24, 2022
Puma used with Rails may lead to Information Exposure High
CVE-2022-23634 was published for puma (RubyGems) Feb 11, 2022
byroot
Credited to byroot
A vulnerability, which was classified as problematic, was found in X.org Server. This affects an... High Unreviewed
CVE-2022-3553 was published Oct 17, 2022
A vulnerability, which was classified as problematic, has been found in X.org Server. Affected by... High Unreviewed
CVE-2022-3551 was published Oct 17, 2022
A vulnerability classified as critical has been found in TEM FLEX-1085 1.6.0. Affected is an... High Unreviewed
CVE-2022-2591 was published Aug 2, 2022
A vulnerability exists in a SDM600 endpoint. An attacker could exploit this vulnerability by... High Unreviewed
CVE-2022-3684 was published Mar 28, 2023
A vulnerability exists in the IEC 61850 communication stack that affects multiple Hitachi Energy... High Unreviewed
CVE-2022-3353 was published Feb 21, 2023
A vulnerability was found in Filseclab Twister Antivirus 8. It has been declared as problematic.... High Unreviewed
CVE-2023-1443 was published Mar 17, 2023
A vulnerability has been found in rtcwcoop 1.0.2 and classified as problematic. Affected by this... High Unreviewed
CVE-2019-25104 was published Feb 20, 2023
A vulnerability, which was classified as problematic, was found in Xoslab Easy File Locker 2.2.0... High Unreviewed
CVE-2023-0908 was published Feb 18, 2023
A vulnerability was found in Netgear WNDR3700v2 1.0.1.14 and classified as problematic. This... High Unreviewed
CVE-2023-0850 was published Feb 16, 2023
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before... High Unreviewed
CVE-2019-5603 was published May 24, 2022
A vulnerability was found in Netgear WNDR3700v2 1.0.1.14. It has been rated as problematic. This... High Unreviewed
CVE-2023-0848 was published Feb 16, 2023
Denial of Service in Packetbeat High
CVE-2017-11480 was published for github.com/elastic/beats (Go) Feb 15, 2022
A DoS attack in the web application of D-Link DIR-X1860 before v1.10WWB09_Beta allows a remote... High Unreviewed
CVE-2021-41441 was published Feb 10, 2022
On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.4, and all... High Unreviewed
CVE-2022-23010 was published Jan 26, 2022
Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service. High Unreviewed
CVE-2012-2805 was published May 17, 2022
In Wi-Fi driver, there is a possible way to disconnect Wi-Fi due to an improper resource release.... High Unreviewed
CVE-2022-32589 was published Oct 8, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database