Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,969
Erlang
39
GitHub Actions
38
Go
2,624
Maven
5,000+
npm
4,257
NuGet
760
pip
4,050
Pub
12
RubyGems
953
Rust
1,052
Swift
45
Unreviewed advisories
All unreviewed
5,000+

463 advisories

Loading
In setImpl of AlarmManagerService.java, there is a possible way to put a device into a boot loop... Moderate Unreviewed
CVE-2022-20414 was published Nov 9, 2022
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed
CVE-2022-35268 was published Oct 25, 2022
An unhandled exception in job log parsing in GitLab CE/EE affecting all versions prior to 15.2.5,... Moderate Unreviewed
CVE-2022-3279 was published Oct 17, 2022
lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call... Moderate Unreviewed
CVE-2022-33748 was published Oct 11, 2022
A vulnerability in the SSH implementation of Cisco IOS Software and Cisco IOS XE Software could... High Unreviewed
CVE-2022-20920 was published Oct 11, 2022
Traefik HTTP/2 connections management could cause a denial of service High
CVE-2022-39271 was published for github.com/traefik/traefik/v2 (Go) Oct 10, 2022
In wlan, there is a possible use after free due to an incorrect status check. This could lead to... Moderate Unreviewed
CVE-2022-32590 was published Oct 8, 2022
Improper restriction of broadcasting Intent in ShareLive prior to version 13.2.03.5 leaks MAC... Low Unreviewed
CVE-2022-39872 was published Oct 7, 2022
A maliciously crafted MODEL and SLDPRT file can be used to write beyond the allocated buffer... High Unreviewed
CVE-2022-33886 was published Oct 4, 2022
A maliciously crafted PDF file when parsed through Autodesk AutoCAD 2023 causes an unhandled... High Unreviewed
CVE-2022-33887 was published Oct 4, 2022
A vulnerability in the processing of malformed Common Industrial Protocol (CIP) packets that are... High Unreviewed
CVE-2022-20919 was published Oct 1, 2022
rdiffweb Missing Custom Error Page Moderate
CVE-2022-3175 was published for rdiffweb (pip) Sep 14, 2022
Under certain conditions, the application SAP BusinessObjects Business Intelligence Platform ... Moderate Unreviewed
CVE-2022-35295 was published Sep 14, 2022
Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to... Moderate Unreviewed
CVE-2022-36874 was published Sep 10, 2022
** UNSUPPORTED WHEN ASSIGNED ** sys/netinet/tcp_timer.h in FreeBSD before 7.0 contains a denial... High Unreviewed
CVE-2022-32264 was published Sep 7, 2022
Denial of service due to incorrect application of event authorization rules High
CVE-2022-31152 was published for matrix-synapse (pip) Aug 31, 2022
Dell EMC NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x and 19.7.0.0 contain an Improper... Moderate Unreviewed
CVE-2022-34368 was published Aug 31, 2022
Directus vulnerable to unhandled exception on illegal filename_disk value Moderate
CVE-2022-36031 was published for directus (npm) Aug 30, 2022
wgorecki
Credited to wgorecki
Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager,... High Unreviewed
CVE-2022-36923 was published Aug 11, 2022
In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process... High Unreviewed
CVE-2021-46828 was published Jul 21, 2022
An Improper Handling of Exceptional Conditions vulnerability on specific PTX Series devices,... Moderate Unreviewed
CVE-2022-22202 was published Jul 21, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit... Moderate Unreviewed
CVE-2022-34641 was published Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted... Moderate Unreviewed
CVE-2022-34634 was published Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted... Moderate Unreviewed
CVE-2022-34633 was published Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as... Moderate Unreviewed
CVE-2022-34639 was published Jul 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database