GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
836 advisories
Filter by severity
Exposure of sensitive information in Zoom Client SDK's before 5.15.5 may allow an authenticated...
High
Unreviewed
CVE-2023-39214
was published
Aug 9, 2023
Insecure temporary file in the installer for Zoom Rooms before version 5.15.0 may allow an...
High
Unreviewed
CVE-2023-34119
was published
Jul 11, 2023
A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download...
High
Unreviewed
CVE-2021-20124
was published
May 24, 2022
An improper access control vulnerability exists in GitLab Remote Development affecting all...
Moderate
Unreviewed
CVE-2023-6955
was published
Jan 12, 2024
A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download...
High
Unreviewed
CVE-2021-20123
was published
May 24, 2022
Error in parser function in M-Files Server versions before 22.6.11534.1 and before 22.6.11505.0...
Moderate
Unreviewed
CVE-2022-1911
was published
Nov 30, 2022
A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of...
Moderate
Unreviewed
CVE-2024-40725
was published
Jul 18, 2024
IBM Maximo Asset Management 7.6.1.3 and IBM Maximo Application Suite 8.10 and 8.11 allows web...
Moderate
Unreviewed
CVE-2024-22333
was published
Jun 13, 2024
The --mirror documentation for Git through 2.35.1 does not mention the availability of deleted...
High
Unreviewed
CVE-2022-24975
was published
Feb 12, 2022
An Exposure of Resource to Wrong Sphere vulnerability in the sampling service of Juniper Networks...
Moderate
Unreviewed
CVE-2024-39553
was published
Jul 11, 2024
Windows MSHTML Platform Spoofing Vulnerability
High
Unreviewed
CVE-2024-38112
was published
Jul 9, 2024
Exposure of resource to wrong sphere in some Intel(R) DTT software installers may allow an...
High
Unreviewed
CVE-2024-21813
was published
May 16, 2024
Microsoft Word Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2023-36761
was published
Sep 12, 2023
CWE-668: Exposure of the Resource Wrong Sphere vulnerability exists that exposes a SSH
interface...
Moderate
Unreviewed
CVE-2024-5313
was published
Jun 12, 2024
A local attacker with low privileges can read and modify any users files and cause a DoS in the...
High
Unreviewed
CVE-2023-5751
was published
Jun 4, 2024
A flaw was found in the blkgs destruction path in block/blk-cgroup.c in the Linux kernel, leading...
Moderate
Unreviewed
CVE-2024-0443
was published
Jan 12, 2024
A flaw was found in PCP. The default pmproxy configuration exposes the Redis server backend to...
High
Unreviewed
CVE-2024-3019
was published
Mar 28, 2024
A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23...
High
Unreviewed
CVE-2022-24309
was published
Mar 9, 2022
Softing Secure Integration Server Exposure of Resource to Wrong Sphere Remote Code Execution...
Moderate
Unreviewed
CVE-2023-39478
was published
May 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
HID: usbhid: fix info leak...
Moderate
Unreviewed
CVE-2021-46906
was published
Feb 26, 2024
Vladimir Kononovich, a Security Researcher has found a flaw that using a inappropriate...
High
Unreviewed
CVE-2023-6096
was published
Apr 26, 2024
Information disclosure in Linux Networking Firmware due to unauthorized information leak during...
Moderate
Unreviewed
CVE-2022-40525
was published
Jun 6, 2023
Information disclosure in Kernel due to indirect branch misprediction.
Moderate
Unreviewed
CVE-2022-40523
was published
Jun 6, 2023
In the Linux kernel, the following vulnerability has been resolved:
binder: fix async_free_space...
Moderate
Unreviewed
CVE-2021-46935
was published
Feb 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
dmaengine: idxd: fix wq...
Moderate
Unreviewed
CVE-2021-46917
was published
Feb 27, 2024
ProTip!
Advisories are also available from the
GraphQL API