GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,733
Composer 4,238
Erlang 31
GitHub Actions 21
Go 2,005
Maven 5,193
npm 3,716
NuGet 661
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,724

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

271 advisories

Filter by severity

Sort by

Least recently updated

Acrobat Reader DC for macOS versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier)... Low Unreviewed

CVE-2020-24439 was published May 24, 2022

Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017... High Unreviewed

CVE-2020-24429 was published May 24, 2022

An unsigned-library issue was discovered in ProlinOS through 2.4.161.8859R. This OS requires... High Unreviewed

CVE-2020-28045 was published May 24, 2022

NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC... Moderate Unreviewed

CVE-2020-11488 was published May 24, 2022

A spoofing vulnerability exists when Windows incorrectly validates file signatures, aka 'Windows... Moderate Unreviewed

CVE-2020-16922 was published May 24, 2022

An issue was discovered in Foxit Reader and PhantomPDF before 4.1 on macOS. Because the Hardened... High Unreviewed

CVE-2020-26540 was published May 24, 2022

FusionAuth fusionauth-samlv2 0.2.3 allows remote attackers to forge messages and bypass... Critical Unreviewed

CVE-2020-12676 was published May 24, 2022

A vulnerability in the firmware of the Cisco UCS C-Series Rack Servers could allow an... Moderate Unreviewed

CVE-2019-1736 was published May 24, 2022

A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the... Moderate Unreviewed

CVE-2020-10759 was published May 24, 2022

In OASIS Digital Signature Services (DSS) 1.0, an attacker can control the validation outcome (i... Moderate Unreviewed

CVE-2020-13101 was published May 24, 2022

NCR SelfServ ATMs running APTRA XFS 05.01.00 do not properly validate softare updates for the... High Unreviewed

CVE-2020-10126 was published May 24, 2022

A spoofing vulnerability exists when Windows incorrectly validates file signatures, aka 'Windows... Low Unreviewed

CVE-2020-1464 was published May 24, 2022

GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot... Moderate Unreviewed

CVE-2020-15705 was published May 24, 2022

In OSIsoft PI System multiple products and versions, a local attacker can plant a binary and... High Unreviewed

CVE-2020-10608 was published May 24, 2022

A vulnerability exists that could allow the execution of unauthorized code or operating system... High Unreviewed

CVE-2020-9047 was published May 24, 2022

A vulnerability in software image verification in Cisco IOS XE Software could allow an... High Unreviewed

CVE-2020-3209 was published May 24, 2022

An issue has been found in PowerDNS Recursor 4.1.0 through 4.3.0 where records in the answer... Moderate Unreviewed

CVE-2020-12244 was published May 24, 2022

A vulnerability in the Image Signature Verification feature of Cisco Firepower Threat Defense ... Moderate Unreviewed

CVE-2020-3308 was published May 24, 2022

wolfSSL before 4.3.0 mishandles calls to wc_SignatureGenerateHash, leading to fault injection in... High Unreviewed

CVE-2019-19962 was published May 24, 2022

Unencrypted HTTP communications for firmware upgrades in Petalk AI and PF-103 allow man-in-the... High Unreviewed

CVE-2019-16732 was published May 24, 2022

The Keybase app 2.13.2 for iOS provides potentially insufficient notice that it is employing a... High Unreviewed

CVE-2019-16992 was published May 24, 2022

A crafted S/MIME message consisting of an inner encryption layer and an outer SignedData layer... High Unreviewed

CVE-2019-11755 was published May 24, 2022

A vulnerability in Cisco NX-OS Software and Cisco IOS XE Software could allow an authenticated,... High Unreviewed

CVE-2019-12662 was published May 24, 2022

A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an... High Unreviewed

CVE-2019-12649 was published May 24, 2022

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to an Improper Verification of... Moderate Unreviewed

CVE-2019-3738 was published May 24, 2022

Previous 1 2 … 5 6 7 8 9 10 11 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

271 advisories