Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,210 advisories

Loading
An issue was discovered in COINS Construction Cloud 11.12. Due to insufficient input... Moderate Unreviewed
CVE-2021-45223 was published Jan 25, 2022
An issue was discovered in COINS Construction Cloud 11.12. Due to improper validation of user... Moderate Unreviewed
CVE-2021-45226 was published Jan 25, 2022
Username spoofing in OnionShare Moderate
CVE-2022-21696 was published for onionshare-cli (pip) Jan 21, 2022
An Improper Input Validation vulnerability in the Juniper DHCP daemon (jdhcpd) of Juniper... Moderate Unreviewed
CVE-2022-22163 was published Jan 20, 2022
An Improper Validation of Specified Quantity in Input vulnerability in the routing protocol... Moderate Unreviewed
CVE-2022-22166 was published Jan 20, 2022
An Improper Validation of Syntactic Correctness of Input vulnerability in the Juniper DHCP daemon... Moderate Unreviewed
CVE-2022-22176 was published Jan 20, 2022
A Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the... Moderate Unreviewed
CVE-2022-22179 was published Jan 20, 2022
An issue has been discovered affecting GitLab versions prior to 14.4.5, between 14.5.0 and 14.5.3... Moderate Unreviewed
CVE-2022-0124 was published Jan 19, 2022
GPAC v1.1.0 was discovered to contain an invalid call in the function gf_node_changed(). This... Moderate Unreviewed
CVE-2021-45763 was published Jan 15, 2022
AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a... Moderate Unreviewed
CVE-2021-43762 was published Jan 14, 2022
Logic error in dolibarr Moderate
CVE-2022-0174 was published for dolibarr/dolibarr (Composer) Jan 12, 2022
A missing input validation before memory copy in TIMA trustlet prior to SMR Jan-2022 Release 1... Moderate Unreviewed
CVE-2022-22271 was published Jan 11, 2022
Improper Validation and Sanitization in url-parse Moderate
CVE-2020-8124 was published for url-parse (npm) Jan 6, 2022
In wifi driver, there is a possible system crash due to a missing validation check. This could... Moderate Unreviewed
CVE-2021-41789 was published Jan 5, 2022
In vow driver, there is a possible memory corruption due to improper input validation. This could... Moderate Unreviewed
CVE-2022-20014 was published Jan 5, 2022
In libMtkOmxGsmDec, there is a possible information disclosure due to an incorrect bounds check.... Moderate Unreviewed
CVE-2022-20019 was published Jan 5, 2022
Improper Input Validation and Injection in Apache Log4j2 Moderate
CVE-2021-44832 was published for org.apache.logging.log4j:log4j-core (Maven) Jan 4, 2022
ppkarwasz
Credited to ppkarwasz
Improper input validation in TrustZone memory transfer interface can lead to information... Moderate Unreviewed
CVE-2021-30278 was published Jan 4, 2022
Patient Information Center iX (PIC iX) Versions C.02 and C.03 receives input or data, but does... Moderate Unreviewed
CVE-2021-43548 was published Dec 28, 2021
Insufficient data validation in loader in Google Chrome prior to 96.0.4664.93 allowed a remote... Moderate Unreviewed
CVE-2021-4059 was published Dec 24, 2021
Insufficient data validation in new tab page in Google Chrome prior to 96.0.4664.93 allowed a... Moderate Unreviewed
CVE-2021-4068 was published Dec 24, 2021
Denial of Service in OpenShift Origin Moderate
CVE-2015-5250 was published for github.com/openshift/origin (Go) Dec 20, 2021
In alac decoder, there is a possible out of bounds read due to an incorrect bounds check. This... Moderate Unreviewed
CVE-2021-0674 was published Dec 18, 2021
In apusys, there is a possible out of bounds read due to an incorrect bounds check. This could... Moderate Unreviewed
CVE-2021-0900 was published Dec 18, 2021
In apusys, there is a possible out of bounds read due to an incorrect bounds check. This could... Moderate Unreviewed
CVE-2021-0902 was published Dec 18, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database