Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

399 advisories

Loading
An input validation vulnerability exists in Openshift Enterprise due to a 1:1 mapping of tenants... Low Unreviewed
CVE-2017-7517 was published Oct 17, 2022
When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using... Low Unreviewed
CVE-2022-35252 was published Sep 25, 2022
personnummer/dart vulnerable to Improper Input Validation Low
CVE-2023-22963 was published for personnummer (Pub) Sep 19, 2022
In Core Utilities, there is a possible way to craft a malformed Uri object due to improper input... Low Unreviewed
CVE-2022-20338 was published Aug 13, 2022
In Messaging, there is a possible way to attach a private file to an SMS message due to improper... Low Unreviewed
CVE-2022-20241 was published Aug 12, 2022
In JetBrains IntelliJ IDEA before 2022.2 email address validation in the "Git User Name Is Not... Low Unreviewed
CVE-2022-37010 was published Jul 29, 2022
Jetty invalid URI parsing may produce invalid HttpURI.authority Low
CVE-2022-2047 was published for org.eclipse.jetty:jetty-http (Maven) Jul 7, 2022
rafax00
Credited to rafax00
For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and... Low Unreviewed
CVE-2020-8475 was published May 24, 2022
A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may... Low Unreviewed
CVE-2021-22457 was published May 24, 2022
A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may... Low Unreviewed
CVE-2021-22453 was published May 24, 2022
An improper input validation vulnerability in DSP driver prior to SMR Sep-2021 Release 1 allows... Low Unreviewed
CVE-2021-25457 was published May 24, 2022
Adobe After Effects version 18.2.1 (and earlier) is affected by an Improper input validation... Low Unreviewed
CVE-2021-35995 was published May 24, 2022
Adobe Bridge version 11.0.2 (and earlier) is affected by an uninitialized variable vulnerability... Low Unreviewed
CVE-2021-35991 was published May 24, 2022
Adobe Photoshop versions 21.2.9 (and earlier) and 22.4.2 (and earlier) are affected by an... Low Unreviewed
CVE-2021-36006 was published May 24, 2022
Improper input validation vulnerability in E-mail of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote... Low Unreviewed
CVE-2021-20761 was published May 24, 2022
A vulnerability was found in the Linux kernel in versions before v5.14-rc1. Missing size... Low Unreviewed
CVE-2021-3655 was published May 24, 2022
Some ZTE products have an input verification vulnerability in the diagnostic function interface.... Low Unreviewed
CVE-2021-21726 was published May 24, 2022
In queryInternal of CallLogProvider.java, there is a possible permission bypass due to improper... Low Unreviewed
CVE-2020-0368 was published May 24, 2022
Some ZTE devices have input verification vulnerabilities. The devices support configuring a... Low Unreviewed
CVE-2020-6879 was published May 24, 2022
When typing in a password under certain conditions, a race may have occured where the... Low Unreviewed
CVE-2020-15671 was published May 24, 2022
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to... Low Unreviewed
CVE-2020-0904 was published May 24, 2022
HUAWEI Mate 20 smart phones with Versions earlier than 10.1.0.163(C00E160R3P8) have a denial of... Low Unreviewed
CVE-2020-9083 was published May 24, 2022
The modprobe child process in the ./debian/patches/load_ppp_generic_if_needed patch file... Low Unreviewed
CVE-2020-15704 was published May 24, 2022
In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12... Low Unreviewed
CVE-2020-5912 was published May 24, 2022
IBM Spectrum Scale for IBM Elastic Storage Server 5.3.0 through 5.3.5 could allow an... Low Unreviewed
CVE-2020-4382 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database