GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
157 advisories
Filter by severity
OctoRPKI crashes when max iterations is reached
Moderate
CVE-2022-3616
was published
for
github.com/cloudflare/cfrpki
(Go)
Oct 31, 2022
DoS attack can be performed when an email contains specially designed URL in the body. It can...
Moderate
Unreviewed
CVE-2021-21439
was published
May 24, 2022
IPFS go-bitfield vulnerable to DoS via malformed size arguments
Moderate
CVE-2023-23626
was published
for
github.com/ipfs/go-bitfield
(Go)
Feb 10, 2023
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37...
Moderate
Unreviewed
CVE-2021-44856
was published
Dec 26, 2022
Unauthorized property update in CheckboxGroup component in Vaadin 12-14 and 15-20
Moderate
CVE-2021-33605
was published
for
com.vaadin:vaadin-checkbox-flow
(Maven)
Aug 30, 2021
Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol...
Moderate
Unreviewed
CVE-2022-3192
was published
Mar 31, 2023
Improper condition check in some Intel(R) SPS firmware before version SPS_E3_06.00.03.300.0 may...
Moderate
Unreviewed
CVE-2022-36794
was published
Feb 16, 2023
The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document...
Moderate
Unreviewed
CVE-2019-11459
was published
May 24, 2022
Improper conditions check in the Open CAS software maintained by Intel(R) before version 22.3.1...
Moderate
Unreviewed
CVE-2022-29523
was published
Feb 16, 2023
An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50(ABTG.0...
Moderate
Unreviewed
CVE-2022-45854
was published
Feb 7, 2023
Improper Check for Unusual or Exceptional Conditions in json-smart
Moderate
CVE-2021-27568
was published
for
net.minidev:json-smart
(Maven)
Jun 16, 2021
Improper conditions check in multiple Intel? Processors may allow an authenticated user to...
Moderate
Unreviewed
CVE-2019-14607
was published
May 24, 2022
Froxlor contains Unchecked Error Condition
Moderate
CVE-2023-0572
was published
for
froxlor/froxlor
(Composer)
Jan 30, 2023
Improper conditions check in the Intel(R) IPP Crypto library before version 2021.2 may allow an...
Moderate
Unreviewed
CVE-2021-33147
was published
Feb 11, 2022
Improper conditions check in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM)...
Moderate
Unreviewed
CVE-2021-33139
was published
Feb 11, 2022
Crash due to erroneous `StatusOr` in TensorFlow
Moderate
CVE-2022-23590
was published
for
tensorflow
(pip)
Feb 9, 2022
The code for downloading files did not properly take care of special characters, which led to an...
Moderate
Unreviewed
CVE-2020-15658
was published
May 24, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol...
Moderate
Unreviewed
CVE-2022-22238
was published
Oct 18, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
Moderate
Unreviewed
CVE-2022-22227
was published
Oct 18, 2022
FastStone Image Viewer 6.5 has an Exception Handler Chain Corrupted issue starting at...
Moderate
Unreviewed
CVE-2018-15815
was published
May 14, 2022
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in is_mmacro() in asm...
Moderate
Unreviewed
CVE-2017-17815
was published
May 14, 2022
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver (on all versions prior to R28.3)...
Moderate
Unreviewed
CVE-2019-5673
was published
May 14, 2022
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash...
Moderate
Unreviewed
CVE-2017-13142
was published
May 14, 2022
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP...
Moderate
Unreviewed
CVE-2018-7287
was published
May 13, 2022
Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11...
Moderate
Unreviewed
CVE-2018-12189
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API