GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,656
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
83 advisories
Filter by severity
Logic error in dolibarr
Moderate
CVE-2022-0174
was published
for
dolibarr/dolibarr
(Composer)
Jan 12, 2022
Missing validation causes denial of service via `Conv3DBackpropFilterV2`
Moderate
CVE-2022-29196
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation causes denial of service via `LSTMBlockCell`
Moderate
CVE-2022-29200
was published
for
tensorflow
(pip)
May 24, 2022
Denial of service in `tf.ragged.constant` due to lack of validation
Moderate
CVE-2022-29202
was published
for
tensorflow
(pip)
May 24, 2022
DexLoader function get_stringidx_fromdex() in Redex prior to commit 3b44c64 can load an out of...
Critical
Unreviewed
CVE-2022-36938
was published
Nov 11, 2022
linked_list_allocator vulnerable to out-of-bound writes on `Heap` initialization and `Heap::extend`
High
CVE-2022-36086
was published
for
linked_list_allocator
(Rust)
Sep 16, 2022
The Popup | Custom Popup Builder WordPress plugin before 1.3.1 autoload data from its popup on...
High
Unreviewed
CVE-2022-0214
was published
Feb 15, 2022
libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds...
High
Unreviewed
CVE-2022-2868
was published
Aug 18, 2022
parse-server crashes when receiving file download request with invalid byte range
High
CVE-2022-39313
was published
for
parse-server
(npm)
Oct 18, 2022
In Open5GS 2.4.0, a crafted packet from UE can crash SGW-U/UPF.
High
Unreviewed
CVE-2021-45462
was published
Dec 24, 2021
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer...
Moderate
Unreviewed
CVE-2023-0194
was published
Apr 1, 2023
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer driver...
Low
Unreviewed
CVE-2023-0195
was published
Apr 1, 2023
A vulnerability was found in SourceCodester Card Holder Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2023-4439
was published
Aug 21, 2023
jcvi vulnerable to Configuration Injection due to unsanitized user input
High
CVE-2023-35932
was published
for
jcvi
(pip)
Jun 23, 2023
phonenumber panics on parsing crafted RFC3966 inputs
High
CVE-2023-42444
was published
for
phonenumber
(Rust)
Sep 21, 2023
blurhash panics on parsing crafted inputs
High
CVE-2023-42447
was published
for
blurhash
(Rust)
Sep 21, 2023
A vulnerability exists in the input validation of the GOOSE
messages where out of range values...
Moderate
Unreviewed
CVE-2023-4518
was published
Dec 1, 2023
A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the...
High
Unreviewed
CVE-2022-4904
was published
Mar 7, 2023
Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series...
High
Unreviewed
CVE-2022-20689
was published
Dec 12, 2022
Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series...
High
Unreviewed
CVE-2022-20690
was published
Dec 12, 2022
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Analog...
Moderate
Unreviewed
CVE-2022-20688
was published
Dec 12, 2022
Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA...
Moderate
Unreviewed
CVE-2022-20687
was published
Dec 12, 2022
Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA...
Moderate
Unreviewed
CVE-2022-20686
was published
Dec 12, 2022
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Adaptive...
Moderate
Unreviewed
CVE-2022-20691
was published
Dec 12, 2022
Microsoft Windows XP SP2 and SP3, and Server 2003 SP1 and SP2, does not properly validate the...
High
Unreviewed
CVE-2008-1440
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API