Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

463 advisories

Loading
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit... Moderate Unreviewed
CVE-2022-34636 was published Jul 19, 2022
RISCV ISA Sim commit ac466a21df442c59962589ba296c702631e041b5 implements the incorrect exception... Moderate Unreviewed
CVE-2022-34643 was published Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a implements an incorrect exception type when... Moderate Unreviewed
CVE-2022-34637 was published Jul 19, 2022
Multiple products of CODESYS implement a improper error handling. A low privilege remote attacker... Moderate Unreviewed
CVE-2022-1965 was published Jun 25, 2022
An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allows attackers to trigger an... Moderate Unreviewed
CVE-2022-32990 was published Jun 25, 2022
Improper Handling of Exceptional Conditions in Newtonsoft.Json High
CVE-2024-21907 was published for Newtonsoft.Json (NuGet) Jun 22, 2022
ezsilmar JamesNK
Credited to ezsilmar and JamesNK
A maliciously crafted PDF file may be used to dereference a pointer for read or write operation... High Unreviewed
CVE-2022-27872 was published Jun 22, 2022
Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers... Moderate Unreviewed
CVE-2022-30724 was published Jun 8, 2022
Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers... Moderate Unreviewed
CVE-2022-30725 was published Jun 8, 2022
Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers... Moderate Unreviewed
CVE-2022-30723 was published Jun 8, 2022
Unprotected broadcast in sendIntentForToastDumpLog in DisplayToast prior to SMR Jun-2022 Release... Moderate Unreviewed
CVE-2022-30716 was published Jun 8, 2022
Improper handling of insufficient permissions vulnerability in addAppPackageNameToAllowList in... Moderate Unreviewed
CVE-2022-30727 was published Jun 8, 2022
Denial of service in bottle Critical
CVE-2022-31799 was published for bottle (pip) Jun 3, 2022
Dell EMC PowerScale OneFS versions 8.1.2 – 9.1.0 contain an issue where the OneFS SMB directory... Moderate Unreviewed
CVE-2020-26195 was published May 24, 2022
mwlib 0.13 through 0.13.4 has a denial of service vulnerability when parsing #iferror magic... High Unreviewed
CVE-2012-1109 was published May 24, 2022
issues with partially successful P2M updates on x86 T[his CNA information record relates to... High Unreviewed
CVE-2021-28709 was published May 24, 2022
issues with partially successful P2M updates on x86 T[his CNA information record relates to... High Unreviewed
CVE-2021-28705 was published May 24, 2022
** DISPUTED ** Styra Open Policy Agent (OPA) Gatekeeper through 3.7.0 mishandles concurrency,... Moderate Unreviewed
CVE-2021-43979 was published May 24, 2022
An improper handling of exceptional conditions vulnerability exists in Open Design Alliance ODA... Critical Unreviewed
CVE-2021-43272 was published May 24, 2022
An improper handling of exceptional conditions vulnerability exists in Palo Alto Networks... High Unreviewed
CVE-2021-3063 was published May 24, 2022
In NLnet Labs Routinator prior to 0.10.2, a validation run can be delayed significantly by an... High Unreviewed
CVE-2021-43173 was published May 24, 2022
A vulnerability in the identity-based firewall (IDFW) rule processing feature of Cisco Adaptive... Moderate Unreviewed
CVE-2021-34787 was published May 24, 2022
A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco... High Unreviewed
CVE-2021-34781 was published May 24, 2022
In CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56... High Unreviewed
CVE-2021-34593 was published May 24, 2022
An Improper Handling of Exceptional Conditions vulnerability in the processing of a transit or... High Unreviewed
CVE-2021-0299 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database