GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
41 advisories
Filter by severity
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a control flow vulnerability. The...
Moderate
Unreviewed
CVE-2024-30133
was published
Nov 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm: call the...
High
Unreviewed
CVE-2024-47745
was published
Oct 21, 2024
A vulnerability in the DHCP Snooping feature of Cisco IOS XE Software on Software-Defined Access ...
High
Unreviewed
CVE-2024-20480
was published
Sep 25, 2024
Nokia Service Router Operating System (SR OS) 22.10 and SR Linux, when error-handling update...
High
Unreviewed
CVE-2023-41376
was published
Aug 29, 2023
Insufficient authentication flow in Checkmk before 2.2.0p17, 2.1.0p37 and 2.0.0p39 allows...
High
Unreviewed
CVE-2023-31211
was published
Jan 12, 2024
there is a possible way to bypass due to a logic error in the code. This could lead to local...
High
Unreviewed
CVE-2024-32896
was published
Jun 13, 2024
An issue in phiola/src/afilter/conv.c:115 of phiola v2.0-rc22 allows a remote attacker to cause a...
Moderate
Unreviewed
CVE-2024-33431
was published
May 1, 2024
Rockwell Automation was made aware of a vulnerability that causes all affected controllers on the...
Unknown
Unreviewed
CVE-2024-5659
was published
Jun 14, 2024
Insufficient control flow management in the Hyperscan Library maintained by Intel(R) before...
Moderate
Unreviewed
CVE-2023-28711
was published
Aug 11, 2023
An issue was discovered in ONOS 2.5.1. An intent with the same source and destination shows the...
Moderate
Unreviewed
CVE-2022-29609
was published
Apr 20, 2023
An issue was discovered in ONOS 2.5.1. Modification of an existing intent to have the same source...
High
Unreviewed
CVE-2022-29607
was published
Apr 20, 2023
An issue was discovered in ONOS 2.5.1. IntentManager attempts to install the IPv6 flow rules of...
High
Unreviewed
CVE-2022-29605
was published
Apr 20, 2023
Memory corruption in modem due to improper input validation while handling the incoming CoAP message
Critical
Unreviewed
CVE-2022-25745
was published
Apr 13, 2023
Signal Private Messenger Android v4.59.0 and up and iOS v3.8.1.5 and up allows a remote non...
Moderate
Unreviewed
CVE-2020-5753
was published
May 24, 2022
** DISPUTED ** Styra Open Policy Agent (OPA) Gatekeeper through 3.7.0 mishandles concurrency,...
Moderate
Unreviewed
CVE-2021-43979
was published
May 24, 2022
A malicious insider exploiting this vulnerability can circumvent existing security controls put...
Moderate
Unreviewed
CVE-2024-0313
was published
Mar 14, 2024
An electromagnetic-wave side-channel issue was discovered on NXP SmartMX / P5x security...
Moderate
Unreviewed
CVE-2021-3011
was published
May 24, 2022
A flaw was found in openvswitch (OVS). When processing an IP packet with protocol 0, OVS will...
High
Unreviewed
CVE-2023-1668
was published
Apr 11, 2023
Insufficient control flow management in some Intel(R) Ethernet Controller Administrative Tools...
High
Unreviewed
CVE-2022-27808
was published
Feb 16, 2023
Insufficient control flow management for the Intel(R) SGX SDK software for Linux before version 2...
Moderate
Unreviewed
CVE-2022-26841
was published
Feb 16, 2023
Insufficient control flow management in the Intel(R) Battery Life Diagnostic Tool software before...
High
Unreviewed
CVE-2022-36278
was published
Feb 16, 2023
Multiple Cisco products are affected by a vulnerability in the Snort application detection engine...
Moderate
Unreviewed
CVE-2021-1236
was published
May 24, 2022
In onPackageRemoved of AccessibilityManagerService.java, there is a possibility to automatically...
High
Unreviewed
CVE-2023-20921
was published
Jan 26, 2023
In addOrReplacePhoneAccount of PhoneAccountRegistrar.java, there is a possible way to enable a...
High
Unreviewed
CVE-2023-20915
was published
Jan 26, 2023
An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to...
Moderate
Unreviewed
CVE-2018-19058
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API