GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
40 advisories
Filter by severity
A vulnerability has been identified in SICAM A8000 CP-8000 (All versions < V16), SICAM A8000 CP...
High
Unreviewed
CVE-2020-28396
was published
May 24, 2022
This vulnerability allows a firewall bypass on affected installations of TP-Link Archer A7 prior...
High
Unreviewed
CVE-2021-27245
was published
May 24, 2022
A vulnerability in the data acquisition (DAQ) component of Cisco Firepower Threat Defense (FTD)...
High
Unreviewed
CVE-2019-1669
was published
May 13, 2022
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an...
High
Unreviewed
CVE-2018-0383
was published
May 13, 2022
The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series,...
High
Unreviewed
CVE-2018-9312
was published
May 14, 2022
The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series,...
High
Unreviewed
CVE-2018-9320
was published
May 14, 2022
The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series,...
High
Unreviewed
CVE-2018-9314
was published
May 14, 2022
The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series,...
High
Unreviewed
CVE-2018-9322
was published
May 14, 2022
The OWASP ModSecurity Core Rule Set (CRS) is affected by a response body bypass. A client can...
High
Unreviewed
CVE-2022-39957
was published
Sep 21, 2022
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could...
High
Unreviewed
CVE-2021-1223
was published
May 24, 2022
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously...
High
Unreviewed
CVE-2023-5557
was published
Oct 13, 2023
A vulnerability in the detection engine of Cisco Firepower Threat Defense (FTD) Software could...
High
Unreviewed
CVE-2019-1832
was published
May 24, 2022
A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocol...
High
Unreviewed
CVE-2019-1970
was published
May 24, 2022
Protection mechanism failure in the Intel(R) DCM software before version 5.1 may allow an...
High
Unreviewed
CVE-2022-41979
was published
May 10, 2023
A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered...
High
Unreviewed
CVE-2023-3089
was published
Jul 5, 2023
Protection mechanism failure in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM...
High
Unreviewed
CVE-2023-34427
was published
Aug 11, 2023
Protection Mechanism Failure in bc_tui trustlet from Samsung Blockchain Keystore prior to version...
High
Unreviewed
CVE-2023-30722
was published
Sep 6, 2023
A protection mechanism failure in Fortinet FortiWeb 7.2.0 through 7.2.1, 7.0.0 through 7.0.6, 6.4...
High
Unreviewed
CVE-2023-34984
was published
Sep 13, 2023
SmartScreen Prompt Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-29988
was published
Apr 9, 2024
Secure Boot Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-28920
was published
Apr 9, 2024
Microsoft Office Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-20673
was published
Feb 13, 2024
Internet Shortcut Files Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-21412
was published
Feb 13, 2024
Dropbox Desktop Folder Sharing Mark-of-the-Web Bypass Vulnerability. This vulnerability allows...
High
Unreviewed
CVE-2024-5924
was published
Jun 13, 2024
Parallels Desktop Updater Protection Mechanism Failure Software Downgrade Vulnerability. This...
High
Unreviewed
CVE-2024-6153
was published
Jun 20, 2024
Azure CycleCloud Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38092
was published
Jul 9, 2024
ProTip!
Advisories are also available from the
GraphQL API