Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
656
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

19 advisories

Loading
ZITADEL's Service Users Deactivation not Working High
CVE-2024-47000 was published for github.com/zitadel/zitadel/v2 (Go) Sep 19, 2024
livio-a fforootd
ZITADEL's User Grant Deactivation not Working High
CVE-2024-46999 was published for github.com/zitadel/zitadel/v2 (Go) Sep 19, 2024
livio-a fforootd
When the NGINX Plus is configured to use the MQTT pre-read module, undisclosed requests can cause... High Unreviewed
CVE-2024-39792 was published Aug 14, 2024
Mio's tokens for named pipes may be delivered after deregistration High
CVE-2024-27308 was published for mio (Rust) Mar 4, 2024
rofoun radekvit
By using XSL Transforms, a malicious webserver could have served a user an XSL document that... High Unreviewed
CVE-2022-22755 was published Dec 22, 2022
An issue was discovered in MaraDNS Deadwood through 3.5.0021 that allows variant V1 of unintended... High Unreviewed
CVE-2022-30256 was published Nov 19, 2022
A flaw was found in OpenStack. The application credential tokens can be used even after they have... High Unreviewed
CVE-2022-2447 was published Sep 2, 2022
When Responsive Design Mode was enabled, it used references to objects that were previously freed... High Unreviewed
CVE-2021-23995 was published May 24, 2022
A denial-of-service vulnerability exists in the Ethernet/IP server functionality of the EIP Stack... High Unreviewed
CVE-2020-13530 was published May 24, 2022
get_gate_page in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege... High Unreviewed
CVE-2020-25221 was published May 24, 2022
TigerVNC version prior to 1.10.1 is vulnerable to stack use-after-return, which occurs due to... High Unreviewed
CVE-2019-15691 was published May 24, 2022
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-14895 was published May 13, 2022
An elevation of privilege vulnerability in CameraBase could enable a local malicious application... High Unreviewed
CVE-2017-0544 was published May 13, 2022
An Operation on a Resource after Expiration or Release vulnerability in the Routing Protocol... High Unreviewed
CVE-2022-22197 was published Apr 15, 2022
Philips Vue PACS versions 12.2.x.x and prior uses a cryptographic key or password past its... High Unreviewed
CVE-2021-33020 was published Apr 3, 2022
IBM Sterling Partner Engagement Manager 6.2.0 could allow an attacker to impersonate another user... High Unreviewed
CVE-2022-22332 was published Apr 2, 2022
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.4),... High Unreviewed
CVE-2021-37185 was published Feb 10, 2022
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.4),... High Unreviewed
CVE-2021-37204 was published Feb 10, 2022
Update unsound DrainFilter and RString::retain High
CVE-2020-36212 was published for abi_stable (Rust) Aug 25, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database