Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+

78 advisories

Loading
Agent-to-controller security bypass in Jenkins xUnit Plugin Moderate
CVE-2022-34181 was published for org.jenkins-ci.plugins:xunit (Maven) Jun 24, 2022
NotMyFault
A missing HTTP header (X-Frame-Options) in Kiwi Syslog Server has left customers vulnerable to... Moderate Unreviewed
CVE-2021-35237 was published May 24, 2022
A vulnerability in the multimedia viewer feature of Cisco Webex Meetings and Cisco Webex Meetings... Moderate Unreviewed
CVE-2021-1517 was published May 24, 2022
Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in... Moderate Unreviewed
CVE-2021-1224 was published May 24, 2022
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could... Moderate Unreviewed
CVE-2020-3299 was published May 24, 2022
Multiple vulnerabilities in the secure boot process of Cisco Adaptive Security Appliance (ASA)... Moderate Unreviewed
CVE-2020-3458 was published May 24, 2022
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could... Moderate Unreviewed
CVE-2020-3315 was published May 24, 2022
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) ... Moderate Unreviewed
CVE-2019-13924 was published May 24, 2022
The Roundcube component of Analogic Poste.io 2.1.6 uses .htaccess to protect the logs/ folder,... Moderate Unreviewed
CVE-2019-12938 was published May 24, 2022
A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocol parser... Moderate Unreviewed
CVE-2019-1833 was published May 24, 2022
The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series,... Moderate Unreviewed
CVE-2018-9313 was published May 14, 2022
The smtplib library in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5... Moderate Unreviewed
CVE-2016-0772 was published May 14, 2022
Suricata before 4.0.4 is prone to an HTTP detection bypass vulnerability in detect.c and stream... Moderate Unreviewed
CVE-2018-6794 was published May 14, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed
CVE-2018-0138 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed
CVE-2018-0243 was published May 13, 2022
A vulnerability in Central Web Authentication (CWA) with FlexConnect Access Points (APs) for... Moderate Unreviewed
CVE-2018-0250 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed
CVE-2018-0254 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed
CVE-2018-0244 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an... Moderate Unreviewed
CVE-2018-0297 was published May 13, 2022
A vulnerability in the web UI of Cisco TelePresence Server Software could allow an... Moderate Unreviewed
CVE-2018-0326 was published May 13, 2022
A vulnerability in the VPN configuration management of Cisco FireSIGHT System Software could... Moderate Unreviewed
CVE-2018-0333 was published May 13, 2022
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an... Moderate Unreviewed
CVE-2018-0384 was published May 13, 2022
Medtronic N'Vision Clinician Programmer 8840 N'Vision Clinician Programmer, all versions, and... Moderate Unreviewed
CVE-2018-10631 was published May 13, 2022
The Ubuntu SELinux initscript before version 1:0.10 used touch to create a lockfile in a world... Moderate Unreviewed
CVE-2011-3151 was published Apr 22, 2022
A vulnerability in the automatic decryption process in Cisco Umbrella Secure Web Gateway (SWG)... Moderate Unreviewed
CVE-2022-20805 was published Apr 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database