Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,554 advisories

Loading
A CWE-20: Improper Input Validation vulnerability exists that could cause arbitrary code... High Unreviewed
CVE-2021-22826 was published Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi API command parser functionality of... High Unreviewed
CVE-2021-40423 was published Jan 29, 2022
A memory corruption vulnerability exists in the netserver parse_command_list functionality of... High Unreviewed
CVE-2022-21796 was published Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44384 was published Jan 29, 2022
IBM Security Guardium Insights 3.0 could allow an authenticated user to perform unauthorized... High Unreviewed
CVE-2021-29845 was published Jan 27, 2022
On BIG-IP version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.4, and all... High Unreviewed
CVE-2022-23019 was published Jan 26, 2022
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious... High Unreviewed
CVE-2021-36343 was published Jan 25, 2022
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious... High Unreviewed
CVE-2021-36342 was published Jan 25, 2022
Dell EMC Data Protection Central version 19.5 contains an Improper Input Validation Vulnerability... High Unreviewed
CVE-2021-43588 was published Jan 25, 2022
ASUS VivoMini/Mini PC device has an improper input validation vulnerability. A local attacker... High Unreviewed
CVE-2022-21933 was published Jan 22, 2022
Pexip Infinity before 26 allows temporary remote Denial of Service (abort) because of missing... High Unreviewed
CVE-2021-35969 was published Jan 16, 2022
Pexip Infinity before 26 allows remote denial of service because of missing H.264 input... High Unreviewed
CVE-2021-33499 was published Jan 16, 2022
Pexip Infinity before 26 allows remote denial of service because of missing H.264 input... High Unreviewed
CVE-2021-33498 was published Jan 16, 2022
Pexip Infinity before 26 allows remote denial of service because of missing RTMP input validation. High Unreviewed
CVE-2021-32545 was published Jan 16, 2022
Pexip Infinity before 26.2 allows temporary remote Denial of Service (abort) because of missing... High Unreviewed
CVE-2021-42555 was published Jan 16, 2022
A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) Software version 0.104.1... High Unreviewed
CVE-2022-20698 was published Jan 15, 2022
Improper validation of memory region in Hypervisor can lead to incorrect region mapping in... High Unreviewed
CVE-2021-30285 was published Jan 14, 2022
Possible heap overflow due to lack of index validation before allocating and writing to heap... High Unreviewed
CVE-2021-30311 was published Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34994 was published Jan 14, 2022
A vulnerability has been identified in SIPROTEC 5 6MD85 devices (CPU variant CP300) (All versions... High Unreviewed
CVE-2021-41769 was published Jan 12, 2022
IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive information due to... High Unreviewed
CVE-2021-38957 was published Jan 11, 2022
Improper sanitization of incoming intent in Dressroom prior to SMR Jan-2022 Release 1 allows... High Unreviewed
CVE-2022-22264 was published Jan 11, 2022
Improper validation of a socket state when socket events are being sent to clients can lead to... High Unreviewed
CVE-2021-30262 was published Jan 4, 2022
The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing... High Unreviewed
CVE-2021-24893 was published Jan 4, 2022
ZTE BigVideo analysis product has an input verification vulnerability. Due to the inconsistency... High Unreviewed
CVE-2021-21751 was published Dec 28, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database