GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
21
Go
2,094
Maven
5,000+
npm
3,759
NuGet
678
pip
3,445
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
443 advisories
Filter by severity
There is an Assertion 'context_p->stack_depth == context_p->context_stack_depth' failed at js...
High
Unreviewed
CVE-2020-23309
was published
May 24, 2022
There is an Assertion 'context_p->token.type == LEXER_RIGHT_BRACE || context_p->token.type ==...
High
Unreviewed
CVE-2020-23311
was published
May 24, 2022
There is an Assertion 'context_p->next_scanner_info_p->type == SCANNER_TYPE_FUNCTION' failed at...
High
Unreviewed
CVE-2020-23310
was published
May 24, 2022
There is an Assertion 'context_p->stack_top_uint8 == LEXER_EXPRESSION_START' at js-parser-expr.c...
High
Unreviewed
CVE-2020-23308
was published
May 24, 2022
There is an Assertion 'context.status_flags & PARSER_SCANNING_SUCCESSFUL' failed at js-parser.c...
High
Unreviewed
CVE-2020-23312
was published
May 24, 2022
There is an Assertion in '(flags >> CBC_STACK_ADJUST_SHIFT) >= CBC_STACK_ADJUST_BASE || ...
High
Unreviewed
CVE-2020-23319
was published
May 24, 2022
There is an Assertion in 'context_p->next_scanner_info_p->type == SCANNER_TYPE_FUNCTION' in...
High
Unreviewed
CVE-2020-23320
was published
May 24, 2022
There is an Assertion in 'context_p->token.type == LEXER_RIGHT_BRACE || context_p->token.type ==...
High
Unreviewed
CVE-2020-23322
was published
May 24, 2022
There is an Assertion 'block_found' failed at js-parser-statm.c:2003...
High
Unreviewed
CVE-2020-23314
was published
May 24, 2022
There is an Assertion 'scope_stack_p > context_p->scope_stack_p' failed at js-scanner-util.c:2510...
High
Unreviewed
CVE-2020-23313
was published
May 24, 2022
Reachable assertion is possible while processing peer association WLAN message from host and...
High
Unreviewed
CVE-2021-1937
was published
May 24, 2022
OpenVPN Access Server 2.7.3 to 2.8.7 allows remote attackers to trigger an assert during the user...
High
Unreviewed
CVE-2020-36382
was published
May 24, 2022
A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a...
High
Unreviewed
CVE-2020-25710
was published
May 24, 2022
An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow...
Moderate
Unreviewed
CVE-2021-30501
was published
May 24, 2022
In function lys_node_free() in libyang <= v1.0.225, it asserts that the value of node->module can...
High
Unreviewed
CVE-2021-28905
was published
May 24, 2022
A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a...
Moderate
Unreviewed
CVE-2021-3531
was published
May 24, 2022
Mikrotik RouterOs 6.44.6 (long-term tree) suffers from an assertion failure vulnerability in the...
Moderate
Unreviewed
CVE-2020-20214
was published
May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the...
Moderate
Unreviewed
CVE-2020-20265
was published
May 24, 2022
Histogram type KPI was teardown with the assumption of the existence of histogram binning info...
High
Unreviewed
CVE-2020-11273
was published
May 24, 2022
Denial of service in MODEM due to assert to the invalid configuration in Snapdragon Auto,...
High
Unreviewed
CVE-2020-11274
was published
May 24, 2022
Possible denial of service scenario due to improper handling of group management action frame in...
High
Unreviewed
CVE-2021-1925
was published
May 24, 2022
In BIND 9.0.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8...
High
Unreviewed
CVE-2021-25215
was published
May 24, 2022
In BIND 9.5.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.11.3-S1 -> 9.11.29-S1 and 9.16.8...
Critical
Unreviewed
CVE-2021-25216
was published
May 24, 2022
In BIND 9.8.5 -> 9.8.8, 9.9.3 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11...
Moderate
Unreviewed
CVE-2021-25214
was published
May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname.
High
Unreviewed
CVE-2019-25036
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API