Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

336 advisories

Loading
Visual Components (owned by KUKA) is a robotic simulator that allows simulating factories and... High Unreviewed
CVE-2020-10291 was published May 24, 2022
Improper Authentication vulnerability in Gallagher Command Centre Server allows an... High Unreviewed
CVE-2020-16102 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability. A... High Unreviewed
CVE-2020-26192 was published May 24, 2022
An access control issue in Canaan Avalon ASIC Miner 2020.3.30 and below allows unauthenticated... High Unreviewed
CVE-2022-36604 was published Sep 2, 2022
Missing authentication for critical function in SolarView Compact SV-CPT-MC310 prior to Ver.6.5... High Unreviewed
CVE-2021-20662 was published May 24, 2022
An issue was discovered in Scytl sVote 2.1. Because the sdm-ws-rest API does not require... High Unreviewed
CVE-2019-25020 was published May 24, 2022
HTCondor before 8.9.11 allows a user to submit a job as another user on the system, because of a... High Unreviewed
CVE-2021-25312 was published May 24, 2022
An issue was discovered in Epikur before 20.1.1. A Glassfish 4.1 server with a default... High Unreviewed
CVE-2020-10537 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-27255 was published May 24, 2022
In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate... High Unreviewed
CVE-2020-27225 was published May 24, 2022
There is a Missing Authentication for Critical Function vulnerability in Huawei Smartphone.... High Unreviewed
CVE-2021-22322 was published May 24, 2022
On all 7.x and 6.x versions (fixed in 8.0.0), BIG-IQ high availability (HA) when using a Quorum... High Unreviewed
CVE-2021-22995 was published May 24, 2022
Ballerina is an open source programming language and platform for cloud application programmers.... High Unreviewed
CVE-2021-32700 was published May 24, 2022
Dell Hybrid Client versions prior to 1.5 contain a missing authentication for a critical function... High Unreviewed
CVE-2021-21535 was published May 24, 2022
A denial of service vulnerability exists in the Modbus configuration functionality of Sealevel... High Unreviewed
CVE-2021-21964 was published Feb 10, 2022
IBM Guardium Data Encryption (GDE) 3.0.0.2 and 4.0.0.4 does not perform any authentication for... High Unreviewed
CVE-2021-20474 was published May 24, 2022
Insecure permissions in cskefu v7.0.1 allows unauthenticated attackers to arbitrarily add... High Unreviewed
CVE-2022-36521 was published Aug 27, 2022
A Missing Authentication for Critical Function vulnerability in B. Braun SpaceCom2 prior to... High Unreviewed
CVE-2021-33882 was published May 24, 2022
A vulnerability has been identified in SIMATIC Process Historian 2013 and earlier (All versions),... High Unreviewed
CVE-2021-27395 was published May 24, 2022
The affected product is vulnerable to a missing permission validation on system backup restore,... High Unreviewed
CVE-2021-42539 was published May 24, 2022
An external config control vulnerability exists in the OAS Engine SecureAddUser functionality of... High Unreviewed
CVE-2022-26303 was published May 26, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors allow unauthenticated... High Unreviewed
CVE-2021-33543 was published May 24, 2022
An information disclosure vulnerability exists in the OAS Engine SecureBrowseFile functionality... High Unreviewed
CVE-2022-27169 was published May 26, 2022
In D-link DIR-816 A2_v1.10CNB04.img,the network can be reset without authentication via /goform... High Unreviewed
CVE-2022-36619 was published Sep 1, 2022
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior lacks authentication for... High Unreviewed
CVE-2022-41644 was published Nov 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database