GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,478

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,270 advisories

Filter by severity

Sort by

Least recently updated

Trend Micro ScanMail for Exchange (SMEX) before 3.81 and before 6.1 might install a back door... High Unreviewed

CVE-2003-1343 was published Apr 29, 2022

Unknown vulnerability in Cisco Catalyst 7.5(1) allows local users to bypass authentication and... High Unreviewed

CVE-2003-0216 was published Apr 29, 2022

IBM QRadar 7.3, 7.4, and 7.5 could allow a malicious actor to impersonate an actor due to key... High Unreviewed

CVE-2021-38878 was published Apr 28, 2022

A flaw was found in SSSD version 1.9.0. The SSSD's access-provider logic causes the result of the... High Unreviewed

CVE-2012-3462 was published Apr 23, 2022

An issue was discovered in MISP before 2.4.158. In UsersController.php, password confirmation can... High Unreviewed

CVE-2022-29534 was published Apr 22, 2022

TCP firewalls could be circumvented by sending a SYN Packets with other flags (like e.g. RST flag... High Unreviewed

CVE-2002-2438 was published Apr 21, 2022

A vulnerability within the authentication process of Abacus ERP allows a remote attacker to... High Unreviewed

CVE-2022-1065 was published Apr 20, 2022

Real-time image information exposure is caused by insufficient authentication for activated RTSP... High Unreviewed

CVE-2021-26627 was published Apr 20, 2022

The device authentication service module has a defect vulnerability introduced in the design... High Unreviewed

CVE-2021-46740 was published Apr 12, 2022

An Access Control vulnerability exists in CLARO KAON CG3000 1.00.67 in the router configuration,... High Unreviewed

CVE-2021-43483 was published Apr 9, 2022

A vulnerability was found in SAP Information System 1.0 which has been rated as critical.... High Unreviewed

CVE-2022-1248 was published Apr 7, 2022

A local authentication restriction bypass vulnerability was discovered in HPE OneView version(s):... High Unreviewed

CVE-2022-23699 was published Apr 5, 2022

Improper cleaning of secure memory between authenticated users can lead to face authentication... High Unreviewed

CVE-2021-1950 was published Apr 2, 2022

Improper access control vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and... High Unreviewed

CVE-2022-25915 was published Apr 1, 2022

An improper authentication vulnerability leading to information leakage was discovered in iptime... High Unreviewed

CVE-2021-26620 was published Mar 26, 2022

A flaw was found in the Pacemaker configuration tool (pcs). The pcs daemon was allowing expired... High Unreviewed

CVE-2022-1049 was published Mar 26, 2022

Improper Authentication vulnerability in TLS origin validation of Apache Traffic Server allows an... High Unreviewed

CVE-2021-44759 was published Mar 24, 2022

Improper authentication in Veeam Backup & Replication 9.5U3, 9.5U4,10.x and 11.x component used... High Unreviewed

CVE-2022-26504 was published Mar 18, 2022

An issue was discovered in Luna Simo PPR1.180610.011/202001031830. It mishandles software updates... High Unreviewed

CVE-2021-41848 was published Mar 13, 2022

CAMS for HIS Server contained in the following Yokogawa Electric products improperly authenticate... High Unreviewed

CVE-2022-22729 was published Mar 12, 2022

otris Update Manager 1.2.1.0 allows local users to achieve SYSTEM access via unauthenticated... High Unreviewed

CVE-2021-40376 was published Mar 11, 2022

TP-Link Omada SDN Software Controller before 5.0.15 does not check if the authentication method... High Unreviewed

CVE-2021-44032 was published Mar 11, 2022

Acer Care Center 4.00.30xx before 4.00.3042 contains a local privilege escalation vulnerability.... High Unreviewed

CVE-2022-24285 was published Mar 11, 2022

Acer QuickAccess 2.01.300x before 2.01.3030 and 3.00.30xx before 3.00.3038 contains a local... High Unreviewed

CVE-2022-24286 was published Mar 11, 2022

When the device is in factory state, it can be access the shell without adb authentication... High Unreviewed

CVE-2022-23729 was published Mar 5, 2022

Previous 1 2 … 47 48 49 50 51 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,270 advisories