GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,791

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

987 advisories

Filter by severity

Sort by

Least recently updated

Implementation of the Simple Network Management Protocol (SNMP) operating on the Brocade 6547 ... High Unreviewed

CVE-2024-5461 was published Feb 15, 2025

The vulnerability may allow a remote low priviledged attacker to run arbitrary shell commands by... High Unreviewed

CVE-2025-0593 was published Feb 14, 2025

A critical remote code execution (RCE) vulnerability exists in the web-based management interface... High Unreviewed

CVE-2025-22962 was published Feb 14, 2025

An attacker may inject commands via specially-crafted post requests. High Unreviewed

CVE-2025-24861 was published Feb 14, 2025

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection... High Unreviewed

CVE-2023-2574 was published May 8, 2023

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection... High Unreviewed

CVE-2023-2573 was published May 8, 2023

In Progress® Telerik® UI for WinUI versions prior to 2025 Q1 (3.0.0), a command injection attack... High Unreviewed

CVE-2024-12251 was published Feb 12, 2025

The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager V11 R0.22.0 through V11... High Unreviewed

CVE-2025-23094 was published Feb 6, 2025

A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially... High Unreviewed

CVE-2023-6321 was published May 15, 2024

A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All... High Unreviewed

CVE-2024-50572 was published Nov 12, 2024

Atos Unify OpenScape SBC 10 before 10R3.1.3, OpenScape Branch 10 before 10R3.1.2, and OpenScape... High Unreviewed

CVE-2023-30638 was published Apr 14, 2023

A remote code execution vulnerability exists in the way that the MSHTML engine inproperly... High Unreviewed

CVE-2019-0541 was published May 13, 2022

The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of remote code execution,... High Unreviewed

CVE-2017-6327 was published May 13, 2022

masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server R7.1... High Unreviewed

CVE-2007-3010 was published May 1, 2022

HP OpenView Network Node Manager 6.2 through 7.50 allows remote attackers to execute arbitrary... High Unreviewed

CVE-2005-2773 was published May 1, 2022

When running in Appliance mode, an authenticated remote command injection vulnerability exists in... High Unreviewed

CVE-2025-23239 was published Feb 5, 2025

TOTOLINK A810R V4.1.2cu.5032_B20200407 was found to contain a command insertion vulnerability in... High Unreviewed

CVE-2024-57036 was published Jan 21, 2025

Linksys E8450 v1.2.00.360516 was discovered to contain a command injection vulnerability via... High Unreviewed

CVE-2024-57539 was published Jan 21, 2025

VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector... High Unreviewed

CVE-2020-4006 was published May 24, 2022

A JNDI injection issue was discovered in Cloudera JDBC Connector for Hive before 2.6.26 and JDBC... High Unreviewed

CVE-2024-54660 was published Jan 17, 2025

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed

CVE-2024-23971 was published Jan 31, 2025

A command injection vulnerability exists in local RACADM. A malicious authenticated user could... High Unreviewed

CVE-2024-25951 was published Mar 9, 2024

LuaTeX before 1.17.0 allows execution of arbitrary shell commands when compiling a TeX file... High Unreviewed

CVE-2023-32700 was published May 20, 2023

A privacy issue was addressed with improved handling of files. This issue is fixed in macOS... High Unreviewed

CVE-2025-24150 was published Jan 28, 2025

Multiple API endpoints in Atlassian Bitbucket Server and Data Center 7.0.0 before version 7.6.17,... High Unreviewed

CVE-2022-36804 was published Aug 26, 2022

Previous 1 2 3 4 5 … 39 40 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

987 advisories