GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,971
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+
926 advisories
Filter by severity
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x before 14.1.4, and 13.1.x...
High
Unreviewed
CVE-2021-23012
was published
May 24, 2022
A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy...
High
Unreviewed
CVE-2021-26679
was published
May 24, 2022
A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave...
High
Unreviewed
CVE-2021-26962
was published
May 24, 2022
/jsonrpc on D-Link DIR-841 3.03 and 3.04 devices allows authenticated command injection via ping,...
High
Unreviewed
CVE-2021-28143
was published
May 24, 2022
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a...
High
Unreviewed
CVE-2022-36768
was published
Sep 14, 2022
A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy...
High
Unreviewed
CVE-2021-34610
was published
May 24, 2022
The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is affected by an...
High
Unreviewed
CVE-2021-20122
was published
May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,...
High
Unreviewed
CVE-2021-1315
was published
May 24, 2022
Client side code execution in gitlab-vscode-extension v3.15.0 and earlier allows attacker to...
High
Unreviewed
CVE-2021-22195
was published
May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,...
High
Unreviewed
CVE-2021-1314
was published
May 24, 2022
A remote execution of arbitrary commands vulnerability was discovered in Aruba CX 6200F Switch...
High
Unreviewed
CVE-2021-29143
was published
May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,...
High
Unreviewed
CVE-2021-1146
was published
May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,...
High
Unreviewed
CVE-2021-1147
was published
May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,...
High
Unreviewed
CVE-2021-1318
was published
May 24, 2022
A vulnerability in the upgrade process of Cisco Adaptive Security Appliance (ASA) Software and...
High
Unreviewed
CVE-2021-1488
was published
May 24, 2022
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker...
High
Unreviewed
CVE-2021-1514
was published
May 24, 2022
phpCMS 2008 sp4 allowas remote malicious users to execute arbitrary php commands via the pagesize...
High
Unreviewed
CVE-2020-22201
was published
May 24, 2022
Go before 1.14.14 and 1.15.x before 1.15.7 on Windows is vulnerable to Command Injection and...
High
Unreviewed
CVE-2021-3115
was published
May 24, 2022
A vulnerability in Cisco IOx application hosting environment of Cisco IOS XE Software could allow...
High
Unreviewed
CVE-2021-1384
was published
May 24, 2022
A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow...
High
Unreviewed
CVE-2020-7034
was published
May 24, 2022
Insufficient input validation in PSP firmware for discrete TPM commands could allow a potential...
High
Unreviewed
CVE-2020-12946
was published
May 24, 2022
IBM Curam Social Program Management 6.0 SP2 before EP26, 6.0.4 before 6.0.4.5iFix10 and 6.0.5...
High
Unreviewed
CVE-2014-8903
was published
May 17, 2022
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote...
High
Unreviewed
CVE-2021-1443
was published
May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,...
High
Unreviewed
CVE-2021-1150
was published
May 24, 2022
Proxy command injection vulnerability in Trend Micro InterScan Messaging Virtual Appliance 9.0...
High
Unreviewed
CVE-2017-11391
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API