GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,300
Composer 4,359
Erlang 33
GitHub Actions 22
Go 2,124
Maven 5,300
npm 3,787
NuGet 683
pip 3,467
Pub 12
RubyGems 894
Rust 892
Swift 38

Unreviewed advisories

All unreviewed 244,550

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

127 advisories

Filter by severity

Sort by

Least recently updated

The recovery module has a vulnerability of bypassing the verification of an update package before... High Unreviewed

CVE-2022-37008 was published Aug 11, 2022

Motorola ACE1000 RTUs through 2022-05-02 mishandle application integrity. They allow for custom... High Unreviewed

CVE-2022-30269 was published Jul 27, 2022

The Motorola ACE1000 RTU through 2022-05-02 mishandles firmware integrity. It utilizes either the... High Unreviewed

CVE-2022-30272 was published Jul 27, 2022

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists that could cause... High Unreviewed

CVE-2022-34763 was published Jul 14, 2022

It was discovered that the IcedTea-Web used codebase attribute of the <applet> tag on the HTML... High Unreviewed

CVE-2015-5236 was published Jul 8, 2022

A vulnerability in the packaging of Cisco Adaptive Security Device Manager (ASDM) images and the... High Unreviewed

CVE-2022-20829 was published Jun 25, 2022

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The... High Unreviewed

CVE-2022-32252 was published Jun 15, 2022

When the AMD Platform Security Processor (PSP) boot rom loads, authenticates, and subsequently... High Unreviewed

CVE-2021-26315 was published May 24, 2022

The move_uploaded_file function in godomall5 does not perform an integrity check of extension or... High Unreviewed

CVE-2021-26610 was published May 24, 2022

A lack of target address verification in the selfdestructs() function of ICOVO 1.0 allows... High Unreviewed

CVE-2020-19768 was published May 24, 2022

A lack of target address verification in the BurnMe() function of Rob The Bank 1.0 allows... High Unreviewed

CVE-2020-19769 was published May 24, 2022

A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series... High Unreviewed

CVE-2021-1586 was published May 24, 2022

An issue was discovered in HCC embedded InterNiche 4.0.1. This vulnerability allows the attacker... High Unreviewed

CVE-2021-31228 was published May 24, 2022

PuTTY through 0.75 proceeds with establishing an SSH session even if it has never sent a... High Unreviewed

CVE-2021-36367 was published May 24, 2022

Insufficient verification of data authenticity in Peloton TTR01 up to and including PTV55G allows... High Unreviewed

CVE-2021-33887 was published May 24, 2022

A vulnerability has been identified in Mendix SAML Module (All versions < V2.1.2). The... High Unreviewed

CVE-2021-33712 was published May 24, 2022

The USB firmware update script of homee Brain Cube v2 (2.28.2 and 2.28.4) devices allows an... High Unreviewed

CVE-2020-24395 was published May 24, 2022

CODESYS Development System 3 before 3.5.17.0 displays or executes malicious documents or files... High Unreviewed

CVE-2021-29239 was published May 24, 2022

Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote... High Unreviewed

CVE-2021-21231 was published May 24, 2022

show_default.php in the LocalFilesEditor extension before 11.4.0.1 for Piwigo allows Local File... High Unreviewed

CVE-2021-31783 was published May 24, 2022

A flaw was found in RPM's signature check functionality when reading a package file. This flaw... High Unreviewed

CVE-2021-20271 was published May 24, 2022

A vulnerability in the web UI feature of Cisco IOS XE Software could allow an unauthenticated,... High Unreviewed

CVE-2021-1403 was published May 24, 2022

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2020-17426 was published May 24, 2022

PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is... High Unreviewed

CVE-2020-16122 was published May 24, 2022

An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a denial of... High Unreviewed

CVE-2020-27670 was published May 24, 2022

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

127 advisories