GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
173 advisories
Filter by severity
In apusys, there is a possible memory corruption due to incorrect error handling. This could lead...
High
Unreviewed
CVE-2021-0668
was published
Nov 19, 2021
Inappropriate implementation in V8 in Google Chrome prior to 95.0.4638.69 allowed a remote...
High
Unreviewed
CVE-2021-38003
was published
Nov 24, 2021
An unauthenticated attacker is able to send a special HTTP request, that causes a service to...
High
Unreviewed
CVE-2021-23859
was published
Dec 9, 2021
There is an Exception log vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37052
was published
Dec 9, 2021
An improper check or handling of exceptional conditions in Exynos baseband prior to SMR Dec-2021...
High
Unreviewed
CVE-2021-25516
was published
Dec 9, 2021
Possible buffer overflow due to lack of range check while processing a DIAG command for COEX...
High
Unreviewed
CVE-2021-30289
was published
Jan 4, 2022
Improper access control in TrustZone due to improper error handling while handling the signing...
High
Unreviewed
CVE-2021-1894
was published
Jan 4, 2022
An improper check or handling of exceptional conditions in NPU driver prior to SMR Jan-2022...
High
Unreviewed
CVE-2022-22265
was published
Jan 11, 2022
A release of illegal memory vulnerability in the snmpd daemon of Juniper Networks Junos OS, Junos...
High
Unreviewed
CVE-2022-22177
was published
Jan 20, 2022
On BIG-IP AFM version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and...
High
Unreviewed
CVE-2022-23018
was published
Jan 26, 2022
Improper Handling of Exceptional Conditions, Improper Check for Unusual or Exceptional Conditions...
High
Unreviewed
CVE-2021-22285
was published
Feb 10, 2022
An improper handling of exceptional conditions vulnerability exists within the Connect Before...
High
Unreviewed
CVE-2022-0016
was published
Feb 11, 2022
A memory corruption vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader,...
High
Unreviewed
CVE-2022-22150
was published
Feb 11, 2022
A flaw was found in darkhttpd. Invalid error handling allows remote attackers to cause denial-of...
High
Unreviewed
CVE-2020-25691
was published
Apr 3, 2022
Dell PowerScale OneFS versions 8.2.x - 9.3.0.x contains a denial-of-service vulnerability in...
High
Unreviewed
CVE-2022-23161
was published
Apr 13, 2022
A specially crafted packet sent to the Fernhill SCADA Server Version 3.77 and earlier may cause...
High
Unreviewed
CVE-2022-21155
was published
Apr 13, 2022
A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG...
High
Unreviewed
CVE-2022-25795
was published
Apr 14, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco...
High
Unreviewed
CVE-2022-20726
was published
Apr 16, 2022
A vulnerability in the AppNav-XE feature of Cisco IOS XE Software could allow an unauthenticated,...
High
Unreviewed
CVE-2022-20678
was published
Apr 16, 2022
pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other...
High
Unreviewed
CVE-2006-5170
was published
May 1, 2022
In ion, there is a possible use after free due to incorrect error handling. This could lead to...
High
Unreviewed
CVE-2022-20111
was published
May 4, 2022
In aee driver, there is a possible reference count mistake due to incorrect error handling. This...
High
Unreviewed
CVE-2022-20088
was published
May 4, 2022
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to...
High
Unreviewed
CVE-2022-27167
was published
May 11, 2022
Local privilege escalation in Windows products of ESET allows user who is logged into the system...
High
Unreviewed
CVE-2021-37851
was published
May 12, 2022
ProTip!
Advisories are also available from the
GraphQL API