GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
14 advisories
Filter by severity
The Multipass service was found to have code paths that could be abused to cause a denial of...
Critical
Unreviewed
CVE-2022-27889
was published
Jun 15, 2022
An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a...
Critical
Unreviewed
CVE-2021-32563
was published
May 24, 2022
A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an...
Critical
Unreviewed
CVE-2020-3419
was published
May 24, 2022
There is an Improper Control of Dynamically Managing Code Resources Vulnerability in Huawei...
Critical
Unreviewed
CVE-2021-22387
was published
May 24, 2022
vm2 vulnerable to Sandbox Escape resulting in Remote Code Execution on host
Critical
CVE-2022-36067
was published
for
vm2
(npm)
Sep 28, 2022
Prototype Pollution in config-handler
Critical
CVE-2021-23448
was published
for
config-handler
(npm)
Oct 12, 2021
distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows...
Critical
Unreviewed
CVE-2014-9852
was published
May 14, 2022
TorchServe Pre-Auth Remote Code Execution
Critical
GHSA-4mqg-h5jf-j9m7
was published
for
torchserve
(pip)
Oct 2, 2023
toui allows user-specific variables to be shared between users
Critical
CVE-2023-33175
was published
for
toui
(pip)
May 24, 2023
CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically...
Critical
Unreviewed
CVE-2023-43177
was published
Nov 18, 2023
Remote code execution in pytorch lightning
Critical
CVE-2024-5452
was published
for
lightning
(pip)
Jun 6, 2024
ProTip!
Advisories are also available from the
GraphQL API