GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
24 advisories
Filter by severity
Simulation models for KUKA.Sim Pro version 3.1 are hosted by a server maintained by KUKA. When...
Moderate
Unreviewed
CVE-2020-10635
was published
Feb 25, 2022
A flaw was found in nbdkit due to to improperly caching plaintext state across the STARTTLS...
Low
Unreviewed
CVE-2021-3716
was published
Mar 4, 2022
An issue was discovered in rsn_supp/wpa.c in wpa_supplicant 2.0 through 2.6. Under certain...
Moderate
Unreviewed
CVE-2018-14526
was published
May 13, 2022
ffxivlauncher.exe in Square Enix Final Fantasy XIV 4.21 and 4.25 on Windows is affected by...
High
Unreviewed
CVE-2018-7295
was published
May 13, 2022
An issue was discovered in the RENPHO application 3.0.0 for iOS. It transmits JSON data...
Moderate
Unreviewed
CVE-2019-14808
was published
May 24, 2022
A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance (ASA) Software and...
High
Unreviewed
CVE-2021-34793
was published
May 24, 2022
The build of some language stacks of Eclipse Che version 6 includes pulling some binaries from an...
Moderate
Unreviewed
CVE-2021-41034
was published
May 24, 2022
Rockwell Automation was made aware that the webservers of the Micrologix 1100 and 1400...
High
Unreviewed
CVE-2022-3166
was published
Dec 16, 2022
Channel Accessible by Non-Endpoint vulnerability in CBOT Chatbot allows Adversary in the Middle ...
High
Unreviewed
CVE-2023-2885
was published
May 25, 2023
In the pre connection stage, an improper enforcement of message integrity vulnerability exists...
Moderate
Unreviewed
CVE-2023-22372
was published
Jul 6, 2023
A vulnerability was found in Samba's SMB2 packet signing mechanism. The SMB2 packet signing is...
Moderate
Unreviewed
CVE-2023-3347
was published
Jul 20, 2023
Bluetens Electrostimulation Device BluetensQ device app version 4.3.15 is vulnerable to Man-in...
Low
Unreviewed
CVE-2023-26979
was published
Aug 3, 2023
An issue in animal-art-lab v13.6.1 allows attackers to send crafted notifications via leakage of...
Moderate
Unreviewed
CVE-2023-43297
was published
Oct 2, 2023
LINE for Android version 5.0.2 and earlier and LINE for iOS version 5.0.0 and earlier are...
Moderate
Unreviewed
CVE-2015-0897
was published
Oct 31, 2023
LINE@ for Android version 1.0.0 and LINE@ for iOS version 1.0.0 are vulnerable to MITM (man-in...
Moderate
Unreviewed
CVE-2015-2968
was published
Oct 31, 2023
An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. There is Improper...
High
Unreviewed
CVE-2023-49933
was published
Dec 14, 2023
CWE-924: Improper Enforcement of Message Integrity During Transmission in a
Communication...
High
Unreviewed
CVE-2023-6408
was published
Feb 14, 2024
LibOSDP RMAC revert to the beginning of the session
Moderate
CVE-2024-52288
was published
for
libosdp
(pip)
Mar 8, 2024
BlastRADIUS also affects eduMFA
Moderate
GHSA-vhmj-5q9r-mm9g
was published
for
edumfa
(pip)
Jul 17, 2024
An attacker could exploit the vulnerability by
injecting garbage data or specially crafted data....
High
Unreviewed
CVE-2020-11639
was published
Jul 23, 2024
An issue in GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4...
Moderate
Unreviewed
CVE-2024-39229
was published
Aug 6, 2024
Incorrect access control in the function handleDataChannelChat(dataMessage) of Mirotalk before...
Critical
Unreviewed
CVE-2024-44730
was published
Oct 11, 2024
CWE-924: Improper Enforcement of Message Integrity During Transmission in a Communication Channel...
High
Unreviewed
CVE-2024-8933
was published
Nov 13, 2024
ProTip!
Advisories are also available from the
GraphQL API