GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
40 advisories
Filter by severity
A vulnerability in the data acquisition (DAQ) component of Cisco Firepower Threat Defense (FTD)...
High
Unreviewed
CVE-2019-1669
was published
May 13, 2022
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an...
High
Unreviewed
CVE-2018-0383
was published
May 13, 2022
The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series,...
High
Unreviewed
CVE-2018-9322
was published
May 14, 2022
The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series,...
High
Unreviewed
CVE-2018-9312
was published
May 14, 2022
The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series,...
High
Unreviewed
CVE-2018-9320
was published
May 14, 2022
The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series,...
High
Unreviewed
CVE-2018-9314
was published
May 14, 2022
A vulnerability in the detection engine of Cisco Firepower Threat Defense (FTD) Software could...
High
Unreviewed
CVE-2019-1832
was published
May 24, 2022
A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocol...
High
Unreviewed
CVE-2019-1970
was published
May 24, 2022
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could...
High
Unreviewed
CVE-2021-1223
was published
May 24, 2022
This vulnerability allows a firewall bypass on affected installations of TP-Link Archer A7 prior...
High
Unreviewed
CVE-2021-27245
was published
May 24, 2022
A vulnerability has been identified in SICAM A8000 CP-8000 (All versions < V16), SICAM A8000 CP...
High
Unreviewed
CVE-2020-28396
was published
May 24, 2022
The OWASP ModSecurity Core Rule Set (CRS) is affected by a response body bypass. A client can...
High
Unreviewed
CVE-2022-39957
was published
Sep 21, 2022
Protection mechanism failure in the Intel(R) DCM software before version 5.1 may allow an...
High
Unreviewed
CVE-2022-41979
was published
May 10, 2023
A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered...
High
Unreviewed
CVE-2023-3089
was published
Jul 5, 2023
Windows Remote Desktop Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2023-35352
was published
Jul 11, 2023
Protection mechanism failure in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM...
High
Unreviewed
CVE-2023-34427
was published
Aug 11, 2023
Protection Mechanism Failure in bc_tui trustlet from Samsung Blockchain Keystore prior to version...
High
Unreviewed
CVE-2023-30722
was published
Sep 6, 2023
A protection mechanism failure in Fortinet FortiWeb 7.2.0 through 7.2.1, 7.0.0 through 7.0.6, 6.4...
High
Unreviewed
CVE-2023-34984
was published
Sep 13, 2023
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously...
High
Unreviewed
CVE-2023-5557
was published
Oct 13, 2023
During internal Axis Security Development Model (ASDM) threat-modelling, a flaw was found in the...
High
Unreviewed
CVE-2023-5553
was published
Nov 21, 2023
Microsoft Office Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-20673
was published
Feb 13, 2024
Internet Shortcut Files Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-21412
was published
Feb 13, 2024
Secure Boot Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-28920
was published
Apr 9, 2024
SmartScreen Prompt Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-29988
was published
Apr 9, 2024
A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.4 for...
High
Unreviewed
CVE-2022-48611
was published
Apr 26, 2024
ProTip!
Advisories are also available from the
GraphQL API