GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
235,632 advisories
Filter by severity
Regular expression denial of service in Rapid7 Metasploit
High
Unreviewed
CVE-2019-5645
was published
May 5, 2021
Incorrect Calculation and Use of Insufficiently Random Values in Python
Moderate
Unreviewed
CVE-2020-14422
was published
May 11, 2021
Sensitive Data Exposure in Openshift Container Platform
Moderate
Unreviewed
CVE-2019-10213
was published
May 17, 2021
Information Disclosure in OpenShift Container Platform
Moderate
Unreviewed
CVE-2020-10712
was published
May 25, 2021
Out-of-bounds Read and Missing Release of Memory after Effective Lifetime in tar
Moderate
Unreviewed
CVE-2021-20193
was published
May 27, 2021
Incorrect Permission Assignment for Critical Resource in Node
High
Unreviewed
CVE-2021-22921
was published
Jul 13, 2021
SmarterTools SmarterMail 16.x through 100.x before 100.0.7803 allows XSS.
Moderate
Unreviewed
CVE-2021-43977
was published
Nov 17, 2021
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability...
Moderate
Unreviewed
CVE-2021-29861
was published
Nov 17, 2021
SmarterTools SmarterMail 16.x through 100.x before 100.0.7803 allows remote code execution.
Critical
Unreviewed
CVE-2021-32234
was published
Nov 17, 2021
The importFromRedirection AJAX action of the SEO Redirection Plugin – 301 Redirect Manager...
High
Unreviewed
CVE-2021-24847
was published
Nov 17, 2021
Adobe InDesign versions 16.4 (and earlier) are affected by a Buffer Overflow vulnerability when...
High
Unreviewed
CVE-2021-42731
was published
Nov 17, 2021
Insufficient validation of guest context in the SNP Firmware could lead to a potential loss of...
Moderate
Unreviewed
CVE-2021-26327
was published
Nov 17, 2021
A potential vulnerability exists in AMD Platform Security Processor (PSP) that may allow an...
High
Unreviewed
CVE-2020-12961
was published
Nov 17, 2021
PSP protection against improperly configured side channels may lead to potential information...
Moderate
Unreviewed
CVE-2021-26312
was published
Nov 17, 2021
Modern DRAM devices (PC-DDR4, LPDDR4X) are affected by a vulnerability in their internal Target...
Critical
Unreviewed
CVE-2021-42114
was published
Nov 17, 2021
A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution...
High
Unreviewed
CVE-2021-42385
was published
Nov 17, 2021
Out of Bounds Write and Read in AMD Graphics Driver for Windows 10 in Escape 0x6002d03 may lead...
High
Unreviewed
CVE-2020-12903
was published
Nov 17, 2021
Out of Bounds Read in AMD Graphics Driver for Windows 10 in Escape 0x3004203 may lead to...
Moderate
Unreviewed
CVE-2020-12904
was published
Nov 17, 2021
Improper access control in the software installer for the Intel(R) Serial IO driver for Intel(R)...
High
Unreviewed
CVE-2021-33118
was published
Nov 18, 2021
ProTip!
Advisories are also available from the
GraphQL API