GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,263 advisories
Filter by severity
Improper access control vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and...
High
Unreviewed
CVE-2021-20861
was published
Dec 2, 2021
The GOautodial API prior to commit 3c3a979 made on October 13th, 2021 exposes an API router that...
High
Unreviewed
CVE-2021-43175
was published
Dec 8, 2021
There is a Improper Authentication vulnerability in Huawei Smartphone.Successful exploitation of...
High
Unreviewed
CVE-2021-37100
was published
Dec 8, 2021
There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation...
High
Unreviewed
CVE-2021-37043
was published
Dec 8, 2021
There is an Identity spoofing and authentication bypass vulnerability in Huawei Smartphone...
High
Unreviewed
CVE-2021-37054
was published
Dec 9, 2021
Affected versions of Atlassian Jira Server and Data Center allow attackers with access to an...
High
Unreviewed
CVE-2021-41311
was published
Dec 9, 2021
An authentication bypass vulnerability exists in the get_aes_key_info_by_packetid() function of...
High
Unreviewed
CVE-2021-21955
was published
Dec 10, 2021
Gryphon Tower routers contain an unprotected openvpn configuration file which can grant attackers...
High
Unreviewed
CVE-2021-20145
was published
Dec 10, 2021
A improper authentication in Fortinet FortiAuthenticator version 6.4.0 allows user to bypass the...
High
Unreviewed
CVE-2021-43068
was published
Dec 10, 2021
Auerswald COMfortel 1400 IP and 2600 IP before 2.8G devices allow Authentication Bypass via the ...
High
Unreviewed
CVE-2021-40856
was published
Dec 14, 2021
In stopVpnProfile of Vpn.java, there is a possible VPN profile reset due to a permissions bypass....
High
Unreviewed
CVE-2021-0649
was published
Dec 16, 2021
Clementine Music Player through 1.3.1 is vulnerable to a User Mode Write Access Violation,...
High
Unreviewed
CVE-2021-40826
was published
Dec 16, 2021
TCMAN GIM is vulnerable to a lack of authorization in all available webservice methods listed in ...
High
Unreviewed
CVE-2021-40851
was published
Dec 18, 2021
Dell PowerScale OneFS, versions 8.2.2-9.3.0.x, contain an authentication bypass by primary...
High
Unreviewed
CVE-2021-36350
was published
Dec 22, 2021
An authentication bypass vulnerability exists in the process_msg() function of the home_security...
High
Unreviewed
CVE-2021-21953
was published
Dec 23, 2021
An authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett...
High
Unreviewed
CVE-2021-21902
was published
Dec 23, 2021
NETGEAR XR1000 devices before 1.0.0.58 are affected by authentication bypass.
High
Unreviewed
CVE-2021-45510
was published
Dec 27, 2021
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6...
High
Unreviewed
CVE-2021-45506
was published
Dec 27, 2021
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6...
High
Unreviewed
CVE-2021-45505
was published
Dec 27, 2021
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6...
High
Unreviewed
CVE-2021-45503
was published
Dec 27, 2021
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6...
High
Unreviewed
CVE-2021-45502
was published
Dec 27, 2021
Certain NETGEAR devices are affected by authentication bypass. This affects R7000P before 1.3.3...
High
Unreviewed
CVE-2021-45500
was published
Dec 27, 2021
Certain NETGEAR devices are affected by authentication bypass. This affects R6900P before 1.3.3...
High
Unreviewed
CVE-2021-45499
was published
Dec 27, 2021
An improper authentication vulnerability has been reported to affect Android App Qfile. If...
High
Unreviewed
CVE-2021-38688
was published
Dec 30, 2021
ProTip!
Advisories are also available from the
GraphQL API