Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,411
Erlang
33
GitHub Actions
22
Go
2,146
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+

10,879 advisories

Loading
A permissions issue was addressed with improved validation. This issue is fixed in macOS Big Sur... High Unreviewed
CVE-2021-30713 was published May 24, 2022
The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input... Critical Unreviewed
CVE-2021-21985 was published May 24, 2022
There is a command injection vulnerability in ZTE MF258 Pro product. Due to insufficient... Moderate Unreviewed
CVE-2024-22065 was published Oct 29, 2024
Windows MSHTML Platform Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-30040 was published May 14, 2024
A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow... High Unreviewed
CVE-2018-0296 was published May 13, 2022
Apache Ranger UI vulnerable to Server Side Request Forgery Critical
CVE-2024-45479 was published for org.apache.ranger:ranger (Maven) Jan 22, 2025
A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software... Critical Unreviewed
CVE-2018-0171 was published May 13, 2022
A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and... Critical Unreviewed
CVE-2017-3881 was published May 13, 2022
A vulnerability has been found in y_project RuoYi up to 4.8.0 and classified as critical. This... Moderate Unreviewed
CVE-2025-0734 was published Jan 27, 2025
A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco... High Unreviewed
CVE-2018-0172 was published May 13, 2022
A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) prior to... Critical Unreviewed
CVE-2018-0147 was published May 13, 2022
A vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response... Moderate Unreviewed
CVE-2024-43445 was published Jan 27, 2025
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20704 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20708 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20709 was published May 16, 2023
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20707 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20710 was published May 16, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20705 was published May 16, 2023
In m4u, there is a possible out of bounds write due to improper input validation. This could lead... Moderate Unreviewed
CVE-2023-20722 was published May 16, 2023
In pqframework, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20719 was published May 16, 2023
A packet processing mechanism in Palo Alto Networks PAN-OS software enables a remote attacker to... High Unreviewed
CVE-2024-3385 was published Apr 10, 2024
In isp, there is a possible out of bounds write due to improper input validation. This could lead... Moderate Unreviewed
CVE-2023-20721 was published May 16, 2023
In pqframework, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20720 was published May 16, 2023
Excessive Platform Resource Consumption within a Loop when unmarshalling Compose file having recursive loop Moderate
CVE-2024-10846 was published for github.com/compose-spec/compose-go/v2 (Go) Jan 21, 2025
ahollmann idsulik
thaJeztah glours gbrindisi
Code execution in Apache Struts 1 plugin Critical
CVE-2017-9791 was published for org.apache.struts:struts2-struts1-plugin (Maven) May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database