GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
343 advisories
Filter by severity
On SRX Series devices, an Improper Check for Unusual or Exceptional Conditions when using...
High
Unreviewed
CVE-2022-22218
was published
Oct 18, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol...
Moderate
Unreviewed
CVE-2022-22238
was published
Oct 18, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
Moderate
Unreviewed
CVE-2022-22227
was published
Oct 18, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
Moderate
Unreviewed
CVE-2022-22235
was published
Oct 18, 2022
Uncaptured exceptions in the home screen module. Successful exploitation of this vulnerability...
Moderate
Unreviewed
CVE-2022-41587
was published
Oct 14, 2022
fastify vulnerable to denial of service via malicious Content-Type
High
CVE-2022-39288
was published
for
fastify
(npm)
Oct 11, 2022
A vulnerability in the DNS application layer gateway (ALG) functionality that is used by Network...
High
Unreviewed
CVE-2022-20837
was published
Oct 11, 2022
Improper checking of AP-S lock bit while verifying the secure resource group permissions can lead...
Moderate
Unreviewed
CVE-2021-35108
was published
Sep 3, 2022
An issue was discovered in wolfSSL before 5.5.0. When a TLS 1.3 client connects to a wolfSSL...
High
Unreviewed
CVE-2022-38152
was published
Sep 1, 2022
An unauthenticated user can overload a part of HCL VersionVault Express and cause a denial of...
High
Unreviewed
CVE-2022-27563
was published
Aug 31, 2022
Unexpected server crash in Next.js
Moderate
CVE-2022-36046
was published
for
next
(npm)
Aug 30, 2022
An issue was discovered in Nginx NJS v0.7.5. The JUMP offset for a break instruction was not set...
High
Unreviewed
CVE-2022-35173
was published
Aug 19, 2022
SWFMill commit 53d7690 was discovered to contain a segmentation violation via SWF:...
Moderate
Unreviewed
CVE-2022-36140
was published
Aug 17, 2022
SWFMill commit 53d7690 was discovered to contain a segmentation violation via SWF::MethodBody:...
Moderate
Unreviewed
CVE-2022-36141
was published
Aug 17, 2022
XPDF commit ffaf11c was discovered to contain a segmentation violation via Lexer::getObj(Object*)...
Moderate
Unreviewed
CVE-2022-38234
was published
Aug 17, 2022
XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::getChar()...
Moderate
Unreviewed
CVE-2022-38235
was published
Aug 17, 2022
XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::readMCURow(...
Moderate
Unreviewed
CVE-2022-38233
was published
Aug 17, 2022
SWFMill commit 53d7690 was discovered to contain a segmentation violation via SWF::Reader:...
Moderate
Unreviewed
CVE-2022-36145
was published
Aug 17, 2022
OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump...
Moderate
Unreviewed
CVE-2022-35473
was published
Aug 17, 2022
OTFCC v0.10.4 was discovered to contain a segmentation violation via /x86_64-linux-gnu/libc.so.6...
Moderate
Unreviewed
CVE-2022-35469
was published
Aug 17, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
Moderate
Unreviewed
CVE-2022-22217
was published
Jul 21, 2022
Improper handling of CSS at-rules in lettersanitizer
High
CVE-2022-31103
was published
for
lettersanitizer
(npm)
Jun 23, 2022
Improper Handling of `callbackUrl` parameter in next-auth
High
CVE-2022-31093
was published
for
next-auth
(npm)
Jun 21, 2022
Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address...
Moderate
Unreviewed
CVE-2022-30738
was published
Jun 8, 2022
Improper Check for Unusual or Exceptional Conditions in Elasticsearch
High
CVE-2022-23712
was published
for
org.elasticsearch:elasticsearch
(Maven)
Jun 7, 2022
ProTip!
Advisories are also available from the
GraphQL API