GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
6,582 advisories
Filter by severity
Regular expression denial of service in Rapid7 Metasploit
High
Unreviewed
CVE-2019-5645
was published
May 5, 2021
Adobe InDesign versions 16.4 (and earlier) are affected by a Buffer Overflow vulnerability when...
High
Unreviewed
CVE-2021-42731
was published
Nov 17, 2021
Adobe Animate version 21.0.9 (and earlier) are affected by an out-of-bounds write vulnerability...
High
Unreviewed
CVE-2021-42271
was published
Nov 19, 2021
Adobe Animate version 21.0.9 (and earlier) are affected by an out-of-bounds write vulnerability...
High
Unreviewed
CVE-2021-42524
was published
Nov 19, 2021
Adobe Animate version 21.0.9 (and earlier) is affected by a memory corruption vulnerability due...
High
Unreviewed
CVE-2021-42267
was published
Nov 19, 2021
Adobe Animate version 21.0.9 (and earlier) are affected by a use-after-free vulnerability in the...
High
Unreviewed
CVE-2021-42269
was published
Nov 19, 2021
Adobe After Effects version 18.4.1 (and earlier) is affected by a memory corruption vulnerability...
High
Unreviewed
CVE-2021-40759
was published
Nov 19, 2021
Adobe After Effects version 18.4.1 (and earlier) is affected by a memory corruption vulnerability...
High
Unreviewed
CVE-2021-40753
was published
Nov 19, 2021
Adobe After Effects version 18.4.1 (and earlier) is affected by a memory corruption vulnerability...
High
Unreviewed
CVE-2021-40757
was published
Nov 19, 2021
Adobe After Effects version 18.4.1 (and earlier) is affected by a memory corruption vulnerability...
High
Unreviewed
CVE-2021-40754
was published
Nov 19, 2021
Adobe After Effects version 18.4.1 (and earlier) is affected by a memory corruption vulnerability...
High
Unreviewed
CVE-2021-40758
was published
Nov 19, 2021
Adobe Animate version 21.0.9 (and earlier) is affected by a memory corruption vulnerability due...
High
Unreviewed
CVE-2021-40733
was published
Nov 19, 2021
A code execution vulnerability exists in the dwgCompressor::decompress18() functionality of...
High
Unreviewed
CVE-2021-21898
was published
Nov 20, 2021
Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains a privilege...
High
Unreviewed
CVE-2021-36307
was published
Nov 21, 2021
Adobe InCopy version 16.4 (and earlier) is affected by a memory corruption vulnerability due to...
High
Unreviewed
CVE-2021-43015
was published
Nov 23, 2021
Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to...
High
Unreviewed
CVE-2021-42737
was published
Nov 23, 2021
Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to...
High
Unreviewed
CVE-2021-42738
was published
Nov 23, 2021
Adobe Prelude version 10.1 (and earlier) is affected by an improper input validation...
High
Unreviewed
CVE-2021-42733
was published
Nov 23, 2021
Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to...
High
Unreviewed
CVE-2021-40772
was published
Nov 23, 2021
iDRAC9 versions prior to 5.00.00.00 contain an improper input validation vulnerability. An...
High
Unreviewed
CVE-2021-36300
was published
Nov 24, 2021
Dell iDRAC9 versions 4.40.00.00 and later, but prior to 4.40.29.00 and 5.00.00.00 contain an SQL...
High
Unreviewed
CVE-2021-36299
was published
Nov 24, 2021
The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A...
High
Unreviewed
CVE-2021-21980
was published
Nov 25, 2021
Dell EMC Streaming Data Platform versions before 1.3 contain a SQL Injection Vulnerability. A...
High
Unreviewed
CVE-2021-36328
was published
Dec 1, 2021
An unsafe search path vulnerability in FortiClientWindows 7.0.0, 6.4.6 and below, 6.2.x, 6.0.x...
High
Unreviewed
CVE-2021-32592
was published
Dec 2, 2021
IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site request forgery (CSRF) in the...
High
Unreviewed
CVE-2021-29756
was published
Dec 4, 2021
ProTip!
Advisories are also available from the
GraphQL API