Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,269
Erlang
31
GitHub Actions
21
Go
2,043
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,093 advisories

Loading
Vulnerability in rconfig “cert_utils” enables an attacker with user level access to the CLI to... High Unreviewed
CVE-2022-24389 was published May 18, 2022
A authenticated remote command injection vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed
CVE-2022-23672 was published May 18, 2022
Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command... High Unreviewed
CVE-2022-24393 was published May 18, 2022
Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command... High Unreviewed
CVE-2022-24392 was published May 18, 2022
Vulnerability in rconfig “remote_text_file” enables an attacker with user level access to the CLI... High Unreviewed
CVE-2022-24390 was published May 18, 2022
A authenticated remote command injection vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed
CVE-2022-23673 was published May 18, 2022
Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command... High Unreviewed
CVE-2022-24394 was published May 18, 2022
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a... High Unreviewed
CVE-2022-29639 was published May 19, 2022
Vulnerability in rconfig “date” enables an attacker with user level access to the CLI to inject... High Unreviewed
CVE-2022-24388 was published May 18, 2022
An issue was discovered on D-Link DCS-1130 devices. The device provides a user with the... High Unreviewed
CVE-2017-8411 was published May 24, 2022
In all versions of BIG-IP, when running in Appliance mode, an authenticated user assigned the... High Unreviewed
CVE-2022-41800 was published Dec 7, 2022
An issue was discovered on D-Link DIR-818LW devices from 2.05.B03 to 2.06B01 BETA. There is a... High Unreviewed
CVE-2019-12786 was published May 24, 2022
An issue was discovered on D-Link DCS-1100 and DCS-1130 devices. The device runs a custom daemon... High Unreviewed
CVE-2017-8413 was published May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a command injection... High Unreviewed
CVE-2019-7989 was published May 24, 2022
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to... High Unreviewed
CVE-2019-3920 was published May 13, 2022
A shell injection flaw was found in pglogical in versions before 2.3.4 and before 3.6.26. An... High Unreviewed
CVE-2021-3515 was published May 24, 2022
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to... High Unreviewed
CVE-2019-3919 was published May 13, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to... High Unreviewed
CVE-2021-33548 was published May 24, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to... High Unreviewed
CVE-2021-33551 was published May 24, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to... High Unreviewed
CVE-2021-33550 was published May 24, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to... High Unreviewed
CVE-2021-33552 was published May 24, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to... High Unreviewed
CVE-2021-33544 was published May 24, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to... High Unreviewed
CVE-2021-33553 was published May 24, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to... High Unreviewed
CVE-2021-33554 was published May 24, 2022
The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to command... High Unreviewed
CVE-2019-9507 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database