Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

37 advisories

Loading
This issue affects: Secomea GateManager All versions prior to 9.6. Improper Check of host header... Moderate Unreviewed
CVE-2021-32004 was published Nov 23, 2021
Medtronic 2090 CareLink Programmer all versions The affected product uses a virtual private... High Unreviewed
CVE-2018-10596 was published May 13, 2022
In BlackBerry QNX Software Development Platform (SDP) 6.6.0, an elevation of privilege... High Unreviewed
CVE-2017-3891 was published May 13, 2022
OpenStack Neutron allows remote attackers to bypass an intended DHCP-spoofing protection mechanism High
CVE-2016-5362 was published for neutron (pip) May 14, 2022
OpenStack Neutron allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism Critical
CVE-2015-8914 was published for neutron (pip) May 14, 2022
An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be... Moderate Unreviewed
CVE-2022-2663 was published Sep 2, 2022
coreDNS vulnerable to Improper Restriction of Communication Channel to Intended Endpoints Moderate
CVE-2022-2835 was published for github.com/coredns/coredns (Go) Mar 3, 2023
coreDNS vulnerable to Improper Restriction of Communication Channel to Intended Endpoints Moderate
CVE-2022-2837 was published for github.com/coredns/coredns (Go) Mar 3, 2023
chrisbloom7
The IP filter in ABAP Platform and SAP Web Dispatcher - versions WEBDISP 7.85, 7.89, KERNEL 7.85,... Moderate Unreviewed
CVE-2023-29108 was published Apr 11, 2023
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the... High Unreviewed
CVE-2023-28971 was published Apr 18, 2023
Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea... Moderate Unreviewed
CVE-2022-38125 was published Apr 19, 2023
NVIDIA Jetson contains a vulnerability in CBoot, where the PCIe controller is initialized... High Unreviewed
CVE-2023-25515 was published Jun 23, 2023
NVIDIA Jetson contains a vulnerability in CBoot, where the PCIe controller is initialized... Moderate Unreviewed
CVE-2023-25518 was published Jun 23, 2023
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the... Moderate Unreviewed
CVE-2023-44195 was published Oct 13, 2023
Dell OS10 Networking Switches running 10.5.2.x and above contain a vulnerability with zeroMQ... Critical Unreviewed
CVE-2023-28078 was published Feb 15, 2024
Mullvad VPN through 2024.1 on Android does not set a DNS server in the blocking state (after a... High Unreviewed
CVE-2024-34446 was published May 3, 2024
Improper restriction of communication channel to intended endpoints issue exists in Ricoh... Moderate Unreviewed
CVE-2024-36252 was published Jun 19, 2024
The interactive service in OpenVPN 2.6.9 and earlier allows the OpenVPN service pipe to be... High Unreviewed
CVE-2024-24974 was published Jul 8, 2024
In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM... High Unreviewed
CVE-2024-6222 was published Jul 9, 2024
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper... Moderate Unreviewed
CVE-2024-39537 was published Jul 11, 2024
Multiple Pimax products accept WebSocket connections from unintended endpoints. If this... High Unreviewed
CVE-2024-41889 was published Aug 5, 2024
The goTenna Pro series does not authenticate public keys which allows an unauthenticated attacker... High Unreviewed
CVE-2024-47125 was published Sep 26, 2024
Sudo for Windows Spoofing Vulnerability Moderate Unreviewed
CVE-2024-43571 was published Oct 8, 2024
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the... High Unreviewed
CVE-2024-47490 was published Oct 11, 2024
IBM Fusion and IBM Fusion HCI 2.3.0 through 2.8.2 is vulnerable to insecure network connection by... Moderate Unreviewed
CVE-2024-22315 was published Jan 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database