GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
22 advisories
Filter by severity
The build of some language stacks of Eclipse Che version 6 includes pulling some binaries from an...
Moderate
Unreviewed
CVE-2021-41034
was published
May 24, 2022
Rockwell Automation was made aware that the webservers of the Micrologix 1100 and 1400...
High
Unreviewed
CVE-2022-3166
was published
Dec 16, 2022
An issue was discovered in rsn_supp/wpa.c in wpa_supplicant 2.0 through 2.6. Under certain...
Moderate
Unreviewed
CVE-2018-14526
was published
May 13, 2022
ffxivlauncher.exe in Square Enix Final Fantasy XIV 4.21 and 4.25 on Windows is affected by...
High
Unreviewed
CVE-2018-7295
was published
May 13, 2022
A flaw was found in nbdkit due to to improperly caching plaintext state across the STARTTLS...
Low
Unreviewed
CVE-2021-3716
was published
Mar 4, 2022
Simulation models for KUKA.Sim Pro version 3.1 are hosted by a server maintained by KUKA. When...
Moderate
Unreviewed
CVE-2020-10635
was published
Feb 25, 2022
A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance (ASA) Software and...
High
Unreviewed
CVE-2021-34793
was published
May 24, 2022
LINE@ for Android version 1.0.0 and LINE@ for iOS version 1.0.0 are vulnerable to MITM (man-in...
Moderate
Unreviewed
CVE-2015-2968
was published
Oct 31, 2023
LINE for Android version 5.0.2 and earlier and LINE for iOS version 5.0.0 and earlier are...
Moderate
Unreviewed
CVE-2015-0897
was published
Oct 31, 2023
An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. There is Improper...
High
Unreviewed
CVE-2023-49933
was published
Dec 14, 2023
CWE-924: Improper Enforcement of Message Integrity During Transmission in a
Communication...
High
Unreviewed
CVE-2023-6408
was published
Feb 14, 2024
An issue was discovered in the RENPHO application 3.0.0 for iOS. It transmits JSON data...
Moderate
Unreviewed
CVE-2019-14808
was published
May 24, 2022
Channel Accessible by Non-Endpoint vulnerability in CBOT Chatbot allows Adversary in the Middle ...
High
Unreviewed
CVE-2023-2885
was published
May 25, 2023
In the pre connection stage, an improper enforcement of message integrity vulnerability exists...
Moderate
Unreviewed
CVE-2023-22372
was published
Jul 6, 2023
Bluetens Electrostimulation Device BluetensQ device app version 4.3.15 is vulnerable to Man-in...
Low
Unreviewed
CVE-2023-26979
was published
Aug 3, 2023
An issue in animal-art-lab v13.6.1 allows attackers to send crafted notifications via leakage of...
Moderate
Unreviewed
CVE-2023-43297
was published
Oct 2, 2023
A vulnerability was found in Samba's SMB2 packet signing mechanism. The SMB2 packet signing is...
Moderate
Unreviewed
CVE-2023-3347
was published
Jul 20, 2023
An attacker could exploit the vulnerability by
injecting garbage data or specially crafted data....
High
Unreviewed
CVE-2020-11639
was published
Jul 23, 2024
Incorrect access control in the function handleDataChannelChat(dataMessage) of Mirotalk before...
Critical
Unreviewed
CVE-2024-44730
was published
Oct 11, 2024
CWE-924: Improper Enforcement of Message Integrity During Transmission in a Communication Channel...
High
Unreviewed
CVE-2024-8933
was published
Nov 13, 2024
An issue in GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4...
Moderate
Unreviewed
CVE-2024-39229
was published
Aug 6, 2024
ProTip!
Advisories are also available from the
GraphQL API