Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

463 advisories

Loading
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted... Moderate Unreviewed
CVE-2022-34633 was published Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted... Moderate Unreviewed
CVE-2022-34634 was published Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as... Moderate Unreviewed
CVE-2022-34639 was published Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit... Moderate Unreviewed
CVE-2022-34636 was published Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit... Moderate Unreviewed
CVE-2022-34641 was published Jul 19, 2022
Multiple products of CODESYS implement a improper error handling. A low privilege remote attacker... Moderate Unreviewed
CVE-2022-1965 was published Jun 25, 2022
A maliciously crafted PDF file may be used to dereference a pointer for read or write operation... High Unreviewed
CVE-2022-27872 was published Jun 22, 2022
An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allows attackers to trigger an... Moderate Unreviewed
CVE-2022-32990 was published Jun 25, 2022
Unprotected broadcast in sendIntentForToastDumpLog in DisplayToast prior to SMR Jun-2022 Release... Moderate Unreviewed
CVE-2022-30716 was published Jun 8, 2022
Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers... Moderate Unreviewed
CVE-2022-30723 was published Jun 8, 2022
Improper handling of insufficient permissions vulnerability in addAppPackageNameToAllowList in... Moderate Unreviewed
CVE-2022-30727 was published Jun 8, 2022
Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers... Moderate Unreviewed
CVE-2022-30724 was published Jun 8, 2022
Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers... Moderate Unreviewed
CVE-2022-30725 was published Jun 8, 2022
There is a denial of service vulnerability in some huawei products. In specific scenarios, due to... High Unreviewed
CVE-2021-22328 was published May 24, 2022
An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-005. Hashing is mishandled for... High Unreviewed
CVE-2021-34549 was published May 24, 2022
There is a denial of service vulnerability in some versions of ManageOne. There is a logic error... Moderate Unreviewed
CVE-2021-22409 was published May 24, 2022
An attacker-controlled memory allocation size can be passed to the C++ new operator in RnaDaSvr... High Unreviewed
CVE-2020-5802 was published May 24, 2022
In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4... High Unreviewed
CVE-2020-7468 was published May 24, 2022
There is a denial of service vulnerability in some huawei products. In specific scenarios, due to... High Unreviewed
CVE-2020-9213 was published May 24, 2022
An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a host OS crash... Moderate Unreviewed
CVE-2020-15566 was published May 24, 2022
The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled... Moderate Unreviewed
CVE-2020-12888 was published May 24, 2022
A security feature bypass vulnerability exists in Microsoft Word software when it fails to... High Unreviewed
CVE-2020-16933 was published May 24, 2022
Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to... Moderate Unreviewed
CVE-2022-36874 was published Sep 10, 2022
Shadankun Server Security Type (excluding normal blocking method types) Ver.1.5.3 and earlier... Moderate Unreviewed
CVE-2020-5622 was published May 24, 2022
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10.0 (MTK... High Unreviewed
CVE-2020-11875 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database