Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,992
Erlang
29
GitHub Actions
16
Go
1,782
Maven
5,000+
npm
3,544
NuGet
619
pip
3,134
Pub
10
RubyGems
838
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+

22,106 advisories

Loading
An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS... Critical Unreviewed
CVE-2021-1795 was published May 24, 2022
An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS... Critical Unreviewed
CVE-2021-1796 was published May 24, 2022
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14... Critical Unreviewed
CVE-2021-1794 was published May 24, 2022
HNAP1/control/SetMasterWLanSettings.php in D-Link D-Link Router DIR-846 DIR-846 A1_100.26 allows... Critical Unreviewed
CVE-2020-27600 was published May 24, 2022
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module. Critical Unreviewed
CVE-2020-21585 was published May 24, 2022
VMware Carbon Black Cloud Workload appliance 1.0.0 and 1.01 has an authentication bypass... Critical Unreviewed
CVE-2021-21982 was published May 24, 2022
Manage Engine OpManager builds below 125346 are vulnerable to a remote denial of service... Critical Unreviewed
CVE-2021-20078 was published May 24, 2022
On all 7.x and 6.x versions (fixed in 8.0.0), when using a Quorum device for BIG-IQ high... Critical Unreviewed
CVE-2021-23005 was published May 24, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x... Critical Unreviewed
CVE-2021-22987 was published May 24, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x... Critical Unreviewed
CVE-2021-22992 was published May 24, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x... Critical Unreviewed
CVE-2021-22989 was published May 24, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x... Critical Unreviewed
CVE-2021-22991 was published May 24, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x... Critical Unreviewed
CVE-2021-22986 was published May 24, 2022
CONQUEST DICOM SERVER before 1.5.0 has a code execution vulnerability which can be exploited by... Critical Unreviewed
CVE-2020-35308 was published May 24, 2022
A SQL injection vulnerability in Simple College Website 1.0 allows remote unauthenticated... Critical Unreviewed
CVE-2020-28172 was published May 24, 2022
D-link DIR-816 A2 v1.10 is affected by a remote code injection vulnerability. An HTTP request... Critical Unreviewed
CVE-2021-26810 was published May 24, 2022
A remote buffer overflow vulnerability was discovered in some Aruba Instant Access Point (IAP)... Critical Unreviewed
CVE-2021-25149 was published May 24, 2022
A remote buffer overflow vulnerability was discovered in some Aruba Instant Access Point (IAP)... Critical Unreviewed
CVE-2019-5319 was published May 24, 2022
Xerox Phaser 6510 before 64.65.51 and 64.59.11 (Bridge), WorkCentre 6515 before 65.65.51 and 65... Critical Unreviewed
CVE-2021-28671 was published May 24, 2022
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055... Critical Unreviewed
CVE-2021-28668 was published May 24, 2022
Xerox Phaser 6510 before 64.61.23 and 64.59.11 (Bridge), WorkCentre 6515 before 65.61.23 and 65... Critical Unreviewed
CVE-2021-28673 was published May 24, 2022
Xerox Phaser 6510 before 64.65.51 and 64.59.11 (Bridge), WorkCentre 6515 before 65.65.51 and 65... Critical Unreviewed
CVE-2021-28672 was published May 24, 2022
Xerox AltaLink B8045/B8090 before 103.008.030.32000, C8030/C8035 before 103.001.030.32000, C8045... Critical Unreviewed
CVE-2021-28670 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed
CVE-2021-27274 was published May 24, 2022
The Enterprise License Manager portal in Mitel MiContact Center Enterprise before 9.4 could allow... Critical Unreviewed
CVE-2021-26714 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API