Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,577 advisories

Loading
A malformed input file can lead to a segfault due to an out of bounds array access in... Moderate Unreviewed
CVE-2020-25713 was published May 24, 2022
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber... High Unreviewed
CVE-2021-1469 was published May 24, 2022
Missing validation causes denial of service via `Conv3DBackpropFilterV2` Moderate
CVE-2022-29204 was published for tensorflow (pip) May 24, 2022
Missing validation results in undefined behavior in `QuantizedConv2D` Moderate
CVE-2022-29201 was published for tensorflow (pip) May 24, 2022
An improper input validation vulnerability in the TLS certificate generation function allows an... High Unreviewed
CVE-2021-44769 was published Oct 24, 2022
The CleanMyMac X software contains an exploitable privilege escalation vulnerability that exists... Moderate Unreviewed
CVE-2018-4035 was published May 13, 2022
An exploitable local denial-of-service vulnerability exists in the privileged helper tool of GOG... Moderate Unreviewed
CVE-2018-4053 was published May 13, 2022
The CleanMyMac X software contains an exploitable privilege escalation vulnerability due to... Moderate Unreviewed
CVE-2018-4037 was published May 13, 2022
An exploitable privilege escalation vulnerability exists in the helper service of Clean My Mac X,... Moderate Unreviewed
CVE-2018-4041 was published May 13, 2022
The CleanMyMac X software contains an exploitable privilege escalation vulnerability due to... Moderate Unreviewed
CVE-2018-4033 was published May 13, 2022
Improper Input Validation in BeanShell High
CVE-2016-2510 was published for org.apache-extras.beanshell:bsh (Maven) May 13, 2022
Input validation issues were found in Calibre at devices/linux_mount_helper.c which can lead to... Critical Unreviewed
CVE-2011-4124 was published Apr 22, 2022
Improper Input Validation in Jenkins High
CVE-2017-1000391 was published for org.jenkins-ci.main:jenkins-core (Maven) May 14, 2022
The CleanMyMac X software contains an exploitable privilege escalation vulnerability due to... Moderate Unreviewed
CVE-2018-4036 was published May 13, 2022
A potential vulnerability due to improper buffer validation in the SMI handler... High Unreviewed
CVE-2022-1108 was published Apr 23, 2022
A potential vulnerability due to use of Boot Services in the SmmOEMInt15 SMI handler in some... High Unreviewed
CVE-2022-1107 was published Apr 23, 2022
Improper Input Validation in Apache Hadoop High
CVE-2017-3162 was published for org.apache.hadoop:hadoop-client (Maven) May 13, 2022
Improper Input Validation in .Net Framework API's Moderate
CVE-2019-0657 was published for Microsoft.NETCore.App (NuGet) May 14, 2022
Improper Input Validation in k8s.io/ingress-nginx High
CVE-2021-25745 was published for k8s.io/ingress-nginx (Go) May 7, 2022
Improper Input Validation in Apache Axis2 Moderate
CVE-2012-5785 was published for org.apache.axis2:axis2 (Maven) May 17, 2022
Improper Input Validation in Apache Tomcat Moderate
CVE-2011-4858 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
Missing validation causes denial of service via `GetSessionTensor` Moderate
CVE-2022-29191 was published for tensorflow (pip) May 24, 2022
Missing validation causes denial of service via `DeleteSessionTensor` Moderate
CVE-2022-29194 was published for tensorflow (pip) May 24, 2022
Missing validation causes denial of service via `SparseTensorToCSRSparseMatrix` Moderate
CVE-2022-29198 was published for tensorflow (pip) May 24, 2022
A local privilege escalation vulnerability exists in the install helper tool of the Mac OS X... Moderate Unreviewed
CVE-2018-4055 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database