GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
86,754 advisories
Filter by severity
certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address...
High
Unreviewed
CVE-2021-28710
was published
Nov 22, 2021
The affected controllers do not properly sanitize the input containing code syntax. As a result,...
High
Unreviewed
CVE-2021-38448
was published
Nov 23, 2021
Adobe InCopy version 16.4 (and earlier) is affected by a memory corruption vulnerability due to...
High
Unreviewed
CVE-2021-43015
was published
Nov 23, 2021
PLC Editor Versions 1.3.8 and prior is vulnerable to an out-of-bounds write while processing...
High
Unreviewed
CVE-2021-42707
was published
Nov 23, 2021
Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to...
High
Unreviewed
CVE-2021-42738
was published
Nov 23, 2021
Adobe Prelude version 10.1 (and earlier) is affected by an improper input validation...
High
Unreviewed
CVE-2021-42733
was published
Nov 23, 2021
Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to...
High
Unreviewed
CVE-2021-42737
was published
Nov 23, 2021
Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to...
High
Unreviewed
CVE-2021-40772
was published
Nov 23, 2021
The uri-block plugin in Apache APISIX before 2.10.2 uses $request_uri without verification. The ...
High
Unreviewed
CVE-2021-43557
was published
Nov 23, 2021
An Out-of-Bounds Read vulnerability exists when reading a U3D file using Open Design Alliance PRC...
High
Unreviewed
CVE-2021-43581
was published
Nov 23, 2021
The File Download API in Wipro Holmes Orchestrator 20.4.1 (20.4.1_02_11_2020) allows remote...
High
Unreviewed
CVE-2021-38146
was published
Nov 23, 2021
Type confusion in V8 in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to...
High
Unreviewed
CVE-2021-38001
was published
Nov 24, 2021
Inappropriate implementation in V8 in Google Chrome prior to 95.0.4638.69 allowed a remote...
High
Unreviewed
CVE-2021-38003
was published
Nov 24, 2021
Use after free in Sign-In in Google Chrome prior to 95.0.4638.69 allowed a remote attacker who...
High
Unreviewed
CVE-2021-37997
was published
Nov 24, 2021
IBM Sterling Connect:Direct Web Services 1.0 and 6.0 uses an inadequate account lockout setting...
High
Unreviewed
CVE-2021-38890
was published
Nov 24, 2021
Dell EMC CloudLink 7.1 and all prior versions contain an OS command injection Vulnerability. A...
High
Unreviewed
CVE-2021-36313
was published
Nov 24, 2021
iDRAC9 versions prior to 5.00.00.00 contain an improper input validation vulnerability. An...
High
Unreviewed
CVE-2021-36300
was published
Nov 24, 2021
Dell iDRAC9 versions 4.40.00.00 and later, but prior to 4.40.29.00 and 5.00.00.00 contain an SQL...
High
Unreviewed
CVE-2021-36299
was published
Nov 24, 2021
The Images to WebP WordPress plugin before 1.9 does not validate or sanitise the tab parameter...
High
Unreviewed
CVE-2021-24644
was published
Nov 24, 2021
There is a command injection vulnerability in CMA service module of FusionCompute product when...
High
Unreviewed
CVE-2021-37102
was published
Nov 24, 2021
Adobe Creative Cloud version 5.5 (and earlier) are affected by a privilege escalation...
High
Unreviewed
CVE-2021-43019
was published
Nov 24, 2021
There is an Injection attack vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37033
was published
Nov 24, 2021
There is a Remote DoS vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37031
was published
Nov 24, 2021
There is a Remote DoS vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37035
was published
Nov 24, 2021
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation...
High
Unreviewed
CVE-2021-37026
was published
Nov 24, 2021
ProTip!
Advisories are also available from the
GraphQL API