GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,477

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

104 advisories

Filter by severity

Sort by

Least recently updated

Trendnet AC2600 TEW-827DRU version 2.08B01 contains an improper access control configuration that... Moderate Unreviewed

CVE-2021-20156 was published Dec 31, 2021

There is a vulnerability of signature verification mechanism failure in system upgrade through... Moderate Unreviewed

CVE-2021-40045 was published Feb 11, 2022

STMicroelectronics STSAFE-J 1.1.4, J-SAFE3 1.2.5, and J-SIGN sometimes allow attackers to obtain... Moderate Unreviewed

CVE-2021-43392 was published Mar 5, 2022

STMicroelectronics STSAFE-J 1.1.4, J-SAFE3 1.2.5, and J-SIGN sometimes allow attackers to abuse... Moderate Unreviewed

CVE-2021-43393 was published Mar 5, 2022

It was found that apt-key in apt, all versions, do not correctly validate gpg keys with the... Moderate Unreviewed

CVE-2011-3374 was published Apr 22, 2022

A Security Bypass vulnerability exists in Ubuntu Cobbler before 2,2,2 in the cobbler-ubuntu... Moderate Unreviewed

CVE-2012-2092 was published Apr 23, 2022

Cisco IOS software 11.3 through 12.2 running on Cisco uBR7200 and uBR7100 series Universal... Moderate Unreviewed

CVE-2002-1706 was published Apr 30, 2022

ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP LaserJet 4100 and 8150 does not... Moderate Unreviewed

CVE-2002-1796 was published Apr 30, 2022

Cisco 7940/7960 Voice over IP (VoIP) phones do not properly check the Call-ID, branch, and tag... Moderate Unreviewed

CVE-2005-2181 was published May 1, 2022

Grandstream BudgeTone (BT) 100 Voice over IP (VoIP) phones do not properly check the Call-ID,... Moderate Unreviewed

CVE-2005-2182 was published May 1, 2022

A firmware update vulnerability exists in the iburn firmware checks functionality of InHand... Moderate Unreviewed

CVE-2022-26510 was published May 13, 2022

Little Snitch versions 4.0 to 4.0.6 use the SecStaticCodeCheckValidityWithErrors() function... Moderate Unreviewed

CVE-2018-10470 was published May 13, 2022

Insufficient consistency checks in signature handling in the networking stack in Google Chrome... Moderate Unreviewed

CVE-2017-5066 was published May 13, 2022

Adobe Acrobat and Reader versions 2019.008.20081 and earlier, 2019.008.20080 and earlier, 2019... Moderate Unreviewed

CVE-2018-16042 was published May 13, 2022

An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue... Moderate Unreviewed

CVE-2018-4111 was published May 13, 2022

The crypto.generateCRMFRequest method in Mozilla Firefox before 28.0 and SeaMonkey before 2.25... Moderate Unreviewed

CVE-2014-1498 was published May 13, 2022

Google Chrome before 17.0.963.46 does not properly check signatures, which allows remote... Moderate Unreviewed

CVE-2011-3965 was published May 13, 2022

The rsa_pss_params_parse function in libstrongswan/credentials/keys/signature_params.c in... Moderate Unreviewed

CVE-2018-6459 was published May 13, 2022

A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow... Moderate Unreviewed

CVE-2019-1615 was published May 13, 2022

An issue has been found in the DNSSEC validation component of PowerDNS Recursor from 4.0.0 and up... Moderate Unreviewed

CVE-2017-15090 was published May 13, 2022

It was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an... Moderate Unreviewed

CVE-2016-9604 was published May 13, 2022

Bluetooth firmware or operating system software drivers in macOS versions before 10.13, High... Moderate Unreviewed

CVE-2018-5383 was published May 13, 2022

GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary... Moderate Unreviewed

CVE-2018-15587 was published May 14, 2022

Enigmail before 2.0.6 is prone to to OpenPGP signatures being spoofed for arbitrary messages... Moderate Unreviewed

CVE-2018-15586 was published May 14, 2022

A vulnerability in the update mechanism of Subaru StarLink Harman head units 2017, 2018, and 2019... Moderate Unreviewed

CVE-2018-18203 was published May 14, 2022

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

104 advisories