Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,233
Erlang
31
GitHub Actions
20
Go
1,992
Maven
5,000+
npm
3,709
NuGet
661
pip
3,346
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

157 advisories

Loading
OctoRPKI crashes when max iterations is reached Moderate
CVE-2022-3616 was published for github.com/cloudflare/cfrpki (Go) Oct 31, 2022
DoS attack can be performed when an email contains specially designed URL in the body. It can... Moderate Unreviewed
CVE-2021-21439 was published May 24, 2022
IPFS go-bitfield vulnerable to DoS via malformed size arguments Moderate
CVE-2023-23626 was published for github.com/ipfs/go-bitfield (Go) Feb 10, 2023
Jorropo
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37... Moderate Unreviewed
CVE-2021-44856 was published Dec 26, 2022
Unauthorized property update in CheckboxGroup component in Vaadin 12-14 and 15-20 Moderate
CVE-2021-33605 was published for com.vaadin:vaadin-checkbox-flow (Maven) Aug 30, 2021
tdunlap607
Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol... Moderate Unreviewed
CVE-2022-3192 was published Mar 31, 2023
Improper condition check in some Intel(R) SPS firmware before version SPS_E3_06.00.03.300.0 may... Moderate Unreviewed
CVE-2022-36794 was published Feb 16, 2023
The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document... Moderate Unreviewed
CVE-2019-11459 was published May 24, 2022
Improper conditions check in the Open CAS software maintained by Intel(R) before version 22.3.1... Moderate Unreviewed
CVE-2022-29523 was published Feb 16, 2023
An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50(ABTG.0... Moderate Unreviewed
CVE-2022-45854 was published Feb 7, 2023
Improper Check for Unusual or Exceptional Conditions in json-smart Moderate
CVE-2021-27568 was published for net.minidev:json-smart (Maven) Jun 16, 2021
afdesk
Improper conditions check in multiple Intel? Processors may allow an authenticated user to... Moderate Unreviewed
CVE-2019-14607 was published May 24, 2022
Froxlor contains Unchecked Error Condition Moderate
CVE-2023-0572 was published for froxlor/froxlor (Composer) Jan 30, 2023
Improper conditions check in the Intel(R) IPP Crypto library before version 2021.2 may allow an... Moderate Unreviewed
CVE-2021-33147 was published Feb 11, 2022
Improper conditions check in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM)... Moderate Unreviewed
CVE-2021-33139 was published Feb 11, 2022
Crash due to erroneous `StatusOr` in TensorFlow Moderate
CVE-2022-23590 was published for tensorflow (pip) Feb 9, 2022
The code for downloading files did not properly take care of special characters, which led to an... Moderate Unreviewed
CVE-2020-15658 was published May 24, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol... Moderate Unreviewed
CVE-2022-22238 was published Oct 18, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... Moderate Unreviewed
CVE-2022-22227 was published Oct 18, 2022
FastStone Image Viewer 6.5 has an Exception Handler Chain Corrupted issue starting at... Moderate Unreviewed
CVE-2018-15815 was published May 14, 2022
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in is_mmacro() in asm... Moderate Unreviewed
CVE-2017-17815 was published May 14, 2022
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver (on all versions prior to R28.3)... Moderate Unreviewed
CVE-2019-5673 was published May 14, 2022
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash... Moderate Unreviewed
CVE-2017-13142 was published May 14, 2022
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP... Moderate Unreviewed
CVE-2018-7287 was published May 13, 2022
Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11... Moderate Unreviewed
CVE-2018-12189 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database