GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
171 advisories
Filter by severity
An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net:...
High
Unreviewed
CVE-2021-32066
was published
May 24, 2022
An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-005. Hashing is mishandled for...
High
Unreviewed
CVE-2021-34549
was published
May 24, 2022
A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG...
High
Unreviewed
CVE-2021-27042
was published
May 24, 2022
In updateDrawable of StatusBarIconView.java, there is a possible permission bypass due to an...
High
Unreviewed
CVE-2021-0478
was published
May 24, 2022
Mintty before 3.4.7 mishandles Bracketed Paste Mode.
High
Unreviewed
CVE-2021-31701
was published
May 24, 2022
rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code...
High
Unreviewed
CVE-2021-33477
was published
May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl....
High
Unreviewed
CVE-2021-25662
was published
May 24, 2022
Due to a vulnerability in DDoS protection in Juniper Networks Junos OS and Junos OS Evolved on...
High
Unreviewed
CVE-2021-0259
was published
May 24, 2022
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent,...
High
Unreviewed
CVE-2021-0241
was published
May 24, 2022
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent,...
High
Unreviewed
CVE-2021-0240
was published
May 24, 2022
In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue....
High
Unreviewed
CVE-2021-28876
was published
May 24, 2022
Improper handling of exceptional conditions in Bixby prior to version 3.0.53.02 allows attacker...
High
Unreviewed
CVE-2021-25380
was published
May 24, 2022
An improper exception control in softsimd prior to SMR APR-2021 Release 1 allows unprivileged...
High
Unreviewed
CVE-2021-25365
was published
May 24, 2022
RRC sends a connection establishment success to NAS even though connection setup validation...
High
Unreviewed
CVE-2020-11243
was published
May 24, 2022
In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4...
High
Unreviewed
CVE-2020-7468
was published
May 24, 2022
There is a denial of service vulnerability in some huawei products. In specific scenarios, due to...
High
Unreviewed
CVE-2020-9213
was published
May 24, 2022
decompress_gunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huft_build result...
High
Unreviewed
CVE-2021-28831
was published
May 24, 2022
An attacker-controlled memory allocation size can be passed to the C++ new operator in RnaDaSvr...
High
Unreviewed
CVE-2020-5802
was published
May 24, 2022
An attacker can craft and send an OpenNamespace message to port 4241 with valid session-id that...
High
Unreviewed
CVE-2020-5801
was published
May 24, 2022
An unauthenticated remote attacker can send data to RsvcHost.exe listening on TCP port 5241 to...
High
Unreviewed
CVE-2020-5807
was published
May 24, 2022
Improper check or handling of exceptional conditions in MELSEC iQ-F series FX5U(C) CPU unit...
High
Unreviewed
CVE-2020-5665
was published
May 24, 2022
Visual Components (owned by KUKA) is a robotic simulator that allows simulating factories and...
High
Unreviewed
CVE-2020-10292
was published
May 24, 2022
A security feature bypass vulnerability exists in Microsoft Word software when it fails to...
High
Unreviewed
CVE-2020-16933
was published
May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly...
High
Unreviewed
CVE-2020-16895
was published
May 24, 2022
When SAML authentication is enabled, Juniper Networks Mist Cloud UI might incorrectly handle SAML...
High
Unreviewed
CVE-2020-1676
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API