Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,726
Maven
5,000+
npm
4,331
NuGet
763
pip
4,107
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,639 advisories

Loading
eQ-3 Homematic CCU2 2.47.20 and CCU3 3.47.18 with the Script Parser AddOn through 1.8 installed... High Unreviewed
CVE-2019-18937 was published May 24, 2022
An RCE is possible by entering Freemarker markup in an Apache OFBiz Form Widget textarea field... Critical Unreviewed
CVE-2019-10074 was published May 24, 2022
The Signal Private Messenger application before 4.47.7 for Android allows a caller to force a... High Unreviewed
CVE-2019-17191 was published May 24, 2022
Dell Networking X-Series firmware versions prior to 3.0.1.8 contain a host header injection... Moderate Unreviewed
CVE-2021-36322 was published Nov 21, 2021
An issue was discovered in Suricata 4.1.3. The function ftp_pasv_response lacks a check for the... High Unreviewed
CVE-2019-10055 was published May 24, 2022
Arbitrary buffer write issue while processing sequence header during HEVC or AVC encoding. in... Moderate Unreviewed
CVE-2019-10495 was published May 24, 2022
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol... Moderate Unreviewed
CVE-2019-17420 was published May 24, 2022
An Improper Input Validation weakness allows a malicious local attacker to elevate their... High Unreviewed
CVE-2019-0070 was published May 24, 2022
Clustered Data ONTAP versions 9.2 through 9.6 are susceptible to a vulnerability which allows an... Moderate Unreviewed
CVE-2019-5508 was published May 24, 2022
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of... Moderate Unreviewed
CVE-2019-17343 was published May 24, 2022
An issue was discovered on Xiaomi Mi WiFi R3G devices before 2.28.23-stable. The backup file is... Critical Unreviewed
CVE-2019-18370 was published May 24, 2022
Some Dahua products have the problem of denial of service during the login process. An attacker... High Unreviewed
CVE-2019-9678 was published May 24, 2022
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE... High Unreviewed
CVE-2019-3644 was published May 24, 2022
VMware Workstation and Fusion contain a network denial-of-service vulnerability due to improper... Moderate Unreviewed
CVE-2019-5535 was published May 24, 2022
Various Lexmark printers contain a denial of service vulnerability in the SNMP service that can... High Unreviewed
CVE-2019-9931 was published May 24, 2022
Under certain heavy traffic conditions srxpfe process can crash and result in a denial of service... Moderate Unreviewed
CVE-2019-0050 was published May 24, 2022
This issue only affects devices with three (3) or more MPC10's installed in a single chassis with... Moderate Unreviewed
CVE-2019-0056 was published May 24, 2022
/var/WEB-GUI/cgi-bin/telnet.cgi on FiberHome HG2201T 1.00.M5007_JS_201804 devices allows pre... High Unreviewed
CVE-2019-17186 was published May 24, 2022
Functions/EWD_UFAQ_Import.php in the ultimate-faqs plugin through 1.8.24 for WordPress allows... High Unreviewed
CVE-2019-17232 was published May 24, 2022
Insights for Vulnerability Remediation (IVR) is vulnerable to improper input validation. This may... Moderate Unreviewed
CVE-2022-44756 was published Dec 21, 2022
Code injection in Kubernetes Java Client Moderate
CVE-2021-25738 was published for io.kubernetes:client-java (Maven) Oct 12, 2021
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE... High Unreviewed
CVE-2019-3643 was published May 24, 2022
base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel... Low Unreviewed
CVE-2019-17055 was published May 24, 2022
In JetBrains TeamCity versions before 2018.2.5 and UpSource versions before 2018.2 build 1293,... High Unreviewed
CVE-2019-12157 was published May 24, 2022
In the Accounts package, there is a possible crash due to improper input validation. This could... Moderate Unreviewed
CVE-2019-9376 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database