GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,875
Composer 5,065
Erlang 39
GitHub Actions 38
Go 2,698
Maven 6,138
npm 4,325
NuGet 761
pip 4,099
Pub 12
RubyGems 958
Rust 1,063
Swift 45

Unreviewed advisories

All unreviewed 278,645

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

62 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V3.0.1),... High Unreviewed

CVE-2021-44693 was published Dec 13, 2022

ASUS RT-AX56U Wi-Fi Router is vulnerable to stack-based buffer overflow due to improper... High Unreviewed

CVE-2021-44158 was published Jan 4, 2022

A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap... High Unreviewed

CVE-2021-46158 was published Feb 10, 2022

NHI’s health insurance web service component has insufficient validation for input string length,... High Unreviewed

CVE-2021-45918 was published Jun 21, 2022

For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling... High Unreviewed

CVE-2021-28510 was published Jan 26, 2023

A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft... High Unreviewed

CVE-2021-21943 was published Apr 15, 2022

The Popup | Custom Popup Builder WordPress plugin before 1.3.1 autoload data from its popup on... High Unreviewed

CVE-2022-0214 was published Feb 15, 2022

libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds... High Unreviewed

CVE-2022-2868 was published Aug 18, 2022

In Open5GS 2.4.0, a crafted packet from UE can crash SGW-U/UPF. High Unreviewed

CVE-2021-45462 was published Dec 24, 2021

Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series... High Unreviewed

CVE-2022-20690 was published Dec 12, 2022

Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series... High Unreviewed

CVE-2022-20689 was published Dec 12, 2022

The demon image annotation plugin for WordPress is vulnerable to improper input validation in... High Unreviewed

CVE-2022-4171 was published Dec 13, 2022

A denial of service attack might be launched against the server if an unusually lengthy password ... High Unreviewed

CVE-2023-30082 was published Jun 14, 2023

Improper Validation of Specified Quantity in Input vulnerability in Tips and Tricks HQ WP Express... High Unreviewed

CVE-2024-30527 was published May 17, 2024

A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow... High Unreviewed

CVE-2024-5102 was published Jun 10, 2024

A vulnerability in the HCI Modbus TCP COMPONENT of Hitachi Energy RTU500 series CMU Firmware that... High Unreviewed

CVE-2022-28613 was published May 3, 2022

Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP... High Unreviewed

CVE-2022-2277 was published Sep 15, 2022

Denial-of-service (DoS) vulnerability due to improper validation of specified type of input issue... High Unreviewed

CVE-2023-38744 was published Aug 3, 2023

A memory corruption vulnerability exists in the affected products when parsing DFT files. Local... High Unreviewed

CVE-2024-6068 was published Nov 14, 2024

Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet... High Unreviewed

CVE-2024-47257 was published Nov 26, 2024

An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 2100, 1280,... High Unreviewed

CVE-2024-39343 was published Dec 2, 2024

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. High Unreviewed

CVE-2024-1714 was published Feb 21, 2024

In OPPO Store APP, there's a possible escalation of privilege due to improper input validation. High Unreviewed

CVE-2024-1610 was published Dec 18, 2024

In Modem, there is a possible system crash due to improper input validation. This could lead to... High Unreviewed

CVE-2024-20149 was published Jan 6, 2025

An issue in the DeviceloControl function of ITE Tech. Inc ITE IO Access v1.0.0.0 allows attackers... High Unreviewed

CVE-2024-55407 was published Jan 6, 2025

Previous1…3 Next

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

62 advisories