GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,992
Erlang
29
GitHub Actions
16
Go
1,782
Maven
5,000+
npm
3,544
NuGet
619
pip
3,134
Pub
10
RubyGems
838
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+
22,106 advisories
Filter by severity
An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS...
Critical
Unreviewed
CVE-2021-1795
was published
May 24, 2022
An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS...
Critical
Unreviewed
CVE-2021-1796
was published
May 24, 2022
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14...
Critical
Unreviewed
CVE-2021-1794
was published
May 24, 2022
HNAP1/control/SetMasterWLanSettings.php in D-Link D-Link Router DIR-846 DIR-846 A1_100.26 allows...
Critical
Unreviewed
CVE-2020-27600
was published
May 24, 2022
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module.
Critical
Unreviewed
CVE-2020-21585
was published
May 24, 2022
VMware Carbon Black Cloud Workload appliance 1.0.0 and 1.01 has an authentication bypass...
Critical
Unreviewed
CVE-2021-21982
was published
May 24, 2022
Manage Engine OpManager builds below 125346 are vulnerable to a remote denial of service...
Critical
Unreviewed
CVE-2021-20078
was published
May 24, 2022
On all 7.x and 6.x versions (fixed in 8.0.0), when using a Quorum device for BIG-IQ high...
Critical
Unreviewed
CVE-2021-23005
was published
May 24, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x...
Critical
Unreviewed
CVE-2021-22987
was published
May 24, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x...
Critical
Unreviewed
CVE-2021-22992
was published
May 24, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x...
Critical
Unreviewed
CVE-2021-22989
was published
May 24, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x...
Critical
Unreviewed
CVE-2021-22991
was published
May 24, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x...
Critical
Unreviewed
CVE-2021-22986
was published
May 24, 2022
CONQUEST DICOM SERVER before 1.5.0 has a code execution vulnerability which can be exploited by...
Critical
Unreviewed
CVE-2020-35308
was published
May 24, 2022
A SQL injection vulnerability in Simple College Website 1.0 allows remote unauthenticated...
Critical
Unreviewed
CVE-2020-28172
was published
May 24, 2022
D-link DIR-816 A2 v1.10 is affected by a remote code injection vulnerability. An HTTP request...
Critical
Unreviewed
CVE-2021-26810
was published
May 24, 2022
A remote buffer overflow vulnerability was discovered in some Aruba Instant Access Point (IAP)...
Critical
Unreviewed
CVE-2021-25149
was published
May 24, 2022
A remote buffer overflow vulnerability was discovered in some Aruba Instant Access Point (IAP)...
Critical
Unreviewed
CVE-2019-5319
was published
May 24, 2022
Xerox Phaser 6510 before 64.65.51 and 64.59.11 (Bridge), WorkCentre 6515 before 65.65.51 and 65...
Critical
Unreviewed
CVE-2021-28671
was published
May 24, 2022
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055...
Critical
Unreviewed
CVE-2021-28668
was published
May 24, 2022
Xerox Phaser 6510 before 64.61.23 and 64.59.11 (Bridge), WorkCentre 6515 before 65.61.23 and 65...
Critical
Unreviewed
CVE-2021-28673
was published
May 24, 2022
Xerox Phaser 6510 before 64.65.51 and 64.59.11 (Bridge), WorkCentre 6515 before 65.65.51 and 65...
Critical
Unreviewed
CVE-2021-28672
was published
May 24, 2022
Xerox AltaLink B8045/B8090 before 103.008.030.32000, C8030/C8035 before 103.001.030.32000, C8045...
Critical
Unreviewed
CVE-2021-28670
was published
May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
Critical
Unreviewed
CVE-2021-27274
was published
May 24, 2022
The Enterprise License Manager portal in Mitel MiContact Center Enterprise before 9.4 could allow...
Critical
Unreviewed
CVE-2021-26714
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API