GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
513 advisories
Filter by severity
IBM Spectrum Protect Operations Center 8.1.0.000 through 8.1.13.xxx is vulnerable to reverse...
Low
Unreviewed
CVE-2022-22348
was published
Mar 15, 2022
Adobe Character Animator version 4.4 (and earlier versions) are affected by an out-of-bounds read...
Low
Unreviewed
CVE-2021-40769
was published
Mar 17, 2022
Adobe Character Animator version 4.4 (and earlier versions) are affected by an out-of-bounds read...
Low
Unreviewed
CVE-2021-40766
was published
Mar 17, 2022
An issue exists in Safend Data Protector Agent 3.4.5586.9772 in the securitylayer.log file in the...
Low
Unreviewed
CVE-2012-4767
was published
Apr 23, 2022
Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.R26 allows...
Low
Unreviewed
CVE-2020-7281
was published
May 24, 2022
Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local...
Low
Unreviewed
CVE-2020-7282
was published
May 24, 2022
A flaw was found in the virtio-fs shared file system daemon (virtiofsd) of QEMU. The new ...
Low
Unreviewed
CVE-2021-20263
was published
May 24, 2022
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier)...
Low
Unreviewed
CVE-2021-21046
was published
May 24, 2022
The SmartPoster implementation on the Nokia 6131 Near Field Communication (NFC) phone with 05.12...
Low
Unreviewed
CVE-2008-5825
was published
May 17, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
Low
Unreviewed
CVE-2022-34873
was published
Jul 19, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
Low
Unreviewed
CVE-2022-34874
was published
Jul 19, 2022
Cybozu KUNAI for Android 3.0.4 to 3.0.5.1 allow remote attackers to obtain log information...
Low
Unreviewed
CVE-2017-2109
was published
May 17, 2022
IBM Security Verify Identity Manager 10.0 could allow a privileged user to upload a malicious...
Low
Unreviewed
CVE-2022-22450
was published
Jul 15, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
Low
Unreviewed
CVE-2022-34875
was published
Jul 19, 2022
A stored XSS vulnerability was discovered in Micro Focus Vibe, affecting all Vibe version prior...
Low
Unreviewed
CVE-2020-9520
was published
May 24, 2022
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before...
Low
Unreviewed
CVE-2020-3963
was published
May 24, 2022
A NULL pointer dereference in sanei_epson_net_read in SANE Backends through 1.0.29 allows a...
Low
Unreviewed
CVE-2020-12867
was published
May 24, 2022
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.6...
Low
Unreviewed
CVE-2022-28764
was published
Nov 15, 2022
Untrusted search path vulnerability in plugins/abrt-action-install-debuginfo-to-abrt-cache.c in...
Low
Unreviewed
CVE-2012-5659
was published
May 17, 2022
A Denial of Service vulnerability exists in Google Android 4.4.4, 5.0.2, and 5.1.1, which allows...
Low
Unreviewed
CVE-2014-9908
was published
May 17, 2022
Multiple Cross-Site Scripting (XSS) vulnerabilities exist in Simple Online Planning (SOPlanning)...
Low
Unreviewed
CVE-2014-8674
was published
May 17, 2022
A Cross-Site Scripting (XSS) vulnerability exists in the description field of an Download RSS...
Low
Unreviewed
CVE-2014-9405
was published
May 17, 2022
RSA BSAFE Micro Edition Suite versions prior to 4.4 (in 4.0.x, 4.1.x, 4.2.x and 4.3.x) are...
Low
Unreviewed
CVE-2019-3729
was published
May 24, 2022
The RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products...
Low
Unreviewed
CVE-2019-3763
was published
May 24, 2022
A local file disclosure flaw was found in Elastic Code versions 7.3.0, 7.3.1, and 7.3.2. If a...
Low
Unreviewed
CVE-2019-7618
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API