GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,725
Composer 4,237
Erlang 31
GitHub Actions 21
Go 2,003
Maven 5,192
npm 3,714
NuGet 661
pip 3,386
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,531

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

93 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS XE Software could... High Unreviewed

CVE-2022-20676 was published Apr 16, 2022

In Bender/ebee Charge Controllers in multiple versions are prone to Local privilege Escalation.... High Unreviewed

CVE-2021-34591 was published Apr 28, 2022

The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does... Moderate Unreviewed

CVE-2018-10892 was published May 13, 2022

A flaw was found in the way the Linux kernel handled exceptions delivered after a stack switch... Moderate Unreviewed

CVE-2018-10872 was published May 13, 2022

It was discovered freeradius up to and including version 3.0.19 does not correctly configure... High Unreviewed

CVE-2019-10143 was published May 24, 2022

rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed

CVE-2019-10147 was published May 24, 2022

rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed

CVE-2019-10144 was published May 24, 2022

rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed

CVE-2019-10145 was published May 24, 2022

The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before... High Unreviewed

CVE-2019-10167 was published May 24, 2022

Apport reads and writes information on a crashed process to /proc/pid with elevated privileges.... Low Unreviewed

CVE-2019-15790 was published May 24, 2022

A vulnerability has been identified in License Management Utility (LMU) (All versions < V2.4).... High Unreviewed

CVE-2020-10056 was published May 24, 2022

The software performs an operation at a privilege level higher than the minimum level required,... High Unreviewed

CVE-2021-27454 was published May 24, 2022

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker... High Unreviewed

CVE-2021-1528 was published May 24, 2022

** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura... High Unreviewed

CVE-2021-25651 was published May 24, 2022

** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura... High Unreviewed

CVE-2021-25650 was published May 24, 2022

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM... High Unreviewed

CVE-2021-37174 was published May 24, 2022

In Eclipse Openj9 before version 0.29.0, the JVM does not throw IllegalAccessError for... Critical Unreviewed

CVE-2021-41035 was published May 24, 2022

Applications on the tested version of Dominion Voting Systems ImageCast X can execute code with... High Unreviewed

CVE-2022-1744 was published Jun 25, 2022

An attacker may be able to execute malicious actions due to the lack of device access protections... Critical Unreviewed

CVE-2022-2634 was published Aug 11, 2022

UC-8100A-ME-T System Image: Versions v1.0 to v1.6, UC-2100 System Image: Versions v1.0 to v1.12,... High Unreviewed

CVE-2022-3088 was published Nov 29, 2022

A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be... High Unreviewed

CVE-2023-0664 was published Mar 29, 2023

Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges... Critical Unreviewed

CVE-2023-1966 was published Apr 28, 2023

A vulnerability was found in the HCI sockets implementation due to a missing capability check in... Moderate Unreviewed

CVE-2023-2002 was published May 26, 2023

NVIDIA DGX A100/A800 contains a vulnerability in SBIOS where an attacker may cause execution... High Unreviewed

CVE-2023-25521 was published Jul 4, 2023

A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo... High Unreviewed

CVE-2022-40182 was published Jul 6, 2023

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

93 advisories