Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

386 advisories

Loading
An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net:... High Unreviewed
CVE-2021-32066 was published May 24, 2022
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it... Moderate Unreviewed
CVE-2021-1102 was published May 24, 2022
An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers... Moderate Unreviewed
CVE-2020-19473 was published May 24, 2022
Improper Handling of Exceptional Conditions in Ethernet interface frame processing of Juniper... Moderate Unreviewed
CVE-2021-0290 was published May 24, 2022
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 produce incorrect PDF document signatures... Moderate Unreviewed
CVE-2021-33795 was published May 24, 2022
An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-005. Hashing is mishandled for... High Unreviewed
CVE-2021-34549 was published May 24, 2022
A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG... High Unreviewed
CVE-2021-27042 was published May 24, 2022
In updateDrawable of StatusBarIconView.java, there is a possible permission bypass due to an... High Unreviewed
CVE-2021-0478 was published May 24, 2022
DoS attack can be performed when an email contains specially designed URL in the body. It can... Moderate Unreviewed
CVE-2021-21439 was published May 24, 2022
Mintty before 3.4.7 mishandles Bracketed Paste Mode. High Unreviewed
CVE-2021-31701 was published May 24, 2022
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain sensitive information... Moderate Unreviewed
CVE-2019-4722 was published May 24, 2022
rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code... High Unreviewed
CVE-2021-33477 was published May 24, 2022
There is a denial of service vulnerability in some versions of ManageOne. There is a logic error... Moderate Unreviewed
CVE-2021-22409 was published May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... High Unreviewed
CVE-2021-25662 was published May 24, 2022
Improper handling of address deregistration on failure can lead to new GPU address allocation... Moderate Unreviewed
CVE-2021-1906 was published May 24, 2022
ModSecurity 3.x before 3.0.4 mishandles key-value pair parsing, as demonstrated by a "string... Moderate Unreviewed
CVE-2019-25043 was published May 24, 2022
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could... Moderate Unreviewed
CVE-2021-1495 was published May 24, 2022
A vulnerability in the processing of traffic matching a firewall filter containing a syslog... Moderate Unreviewed
CVE-2021-0264 was published May 24, 2022
Due to a vulnerability in DDoS protection in Juniper Networks Junos OS and Junos OS Evolved on... High Unreviewed
CVE-2021-0259 was published May 24, 2022
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent,... High Unreviewed
CVE-2021-0240 was published May 24, 2022
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent,... High Unreviewed
CVE-2021-0241 was published May 24, 2022
Denial of Service vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior... Moderate Unreviewed
CVE-2021-23886 was published May 24, 2022
In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue.... High Unreviewed
CVE-2021-28876 was published May 24, 2022
An improper exception control in softsimd prior to SMR APR-2021 Release 1 allows unprivileged... High Unreviewed
CVE-2021-25365 was published May 24, 2022
Improper handling of exceptional conditions in Bixby prior to version 3.0.53.02 allows attacker... High Unreviewed
CVE-2021-25380 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database