Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,044
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

355 advisories

Loading
XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::getChar()... Moderate Unreviewed
CVE-2022-38235 was published Aug 17, 2022
In setImpl of AlarmManagerService.java, there is a possible way to put a device into a boot loop... Moderate Unreviewed
CVE-2022-20414 was published Nov 9, 2022
Uncaptured exceptions in the home screen module. Successful exploitation of this vulnerability... Moderate Unreviewed
CVE-2022-41587 was published Oct 14, 2022
In loadFromXml of ShortcutPackage.java, there is a possible crash on boot due to an uncaught... Moderate Unreviewed
CVE-2022-20500 was published Dec 13, 2022
Improper conditions check in the voltage modulation interface for some Intel(R) Xeon(R) Scalable... Low Unreviewed
CVE-2019-11139 was published May 24, 2022
Improper Check for Unusual or Exceptional Conditions vulnerability handling requests in Apache... High Unreviewed
CVE-2022-32749 was published Dec 19, 2022
Improper Check for Unusual or Exceptional Conditions vulnerability in handling the requests to... Moderate Unreviewed
CVE-2022-37392 was published Dec 19, 2022
Given the TEE is compromised and controlled by the attacker, improper state maintenance in... Moderate Unreviewed
CVE-2022-28793 was published May 4, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2 and 15.1.x versions prior to 15.1.5.1, when the DNS... High Unreviewed
CVE-2022-28706 was published May 6, 2022
On F5 BIG-IP 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, and 13.1.x... High Unreviewed
CVE-2022-29473 was published May 6, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... Moderate Unreviewed
CVE-2022-26130 was published May 6, 2022
Nginx NJS v0.7.2 was discovered to contain a segmentation violation via njs_lvlhsh_bucket_find at... High Unreviewed
CVE-2022-29369 was published May 13, 2022
Improper Check for Unusual or Exceptional Conditions in Connect2id Nimbus JOSE+JWT Critical
CVE-2019-17195 was published for com.nimbusds:nimbus-jose-jwt (Maven) Oct 16, 2019
An Improper Check for Unusual or Exceptional Conditions vulnerability exists in Schneider... High Unreviewed
CVE-2018-7789 was published May 13, 2022
gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during... Moderate Unreviewed
CVE-2019-9633 was published May 13, 2022
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in... High Unreviewed
CVE-2019-6831 was published May 24, 2022
When configuring a stateless firewall filter in Junos OS, terms named using the format "internal... Critical Unreviewed
CVE-2019-0036 was published May 13, 2022
Unauthorized client-side property update in UIDL request handler in Vaadin 10 and 11 Low
CVE-2018-25007 was published for com.vaadin:flow-server (Maven) Apr 19, 2021
Authz Module Non-Determinism Moderate
CVE-2021-41135 was published for github.com/cosmos/cosmos-sdk (Go) Oct 21, 2021
robert-zaremba iramiller
Incorrect handling of H2 GOAWAY + SETTINGS frames High
CVE-2021-39162 was published for github.com/pomerium/pomerium (Go) Sep 10, 2021
Denial of Service (DoS) in mongo-express Moderate
CVE-2021-23372 was published for mongo-express (npm) Oct 6, 2021
An Improper Check for Unusual or Exceptional Conditions vulnerability in BGP route processing of... High Unreviewed
CVE-2023-22393 was published Jan 13, 2023
Improper check or handling of exception conditions vulnerability in Samsung Pay (US only) prior... Moderate Unreviewed
CVE-2021-25525 was published Dec 9, 2021
Uncaught Exception in mercurius High
CVE-2021-43801 was published for mercurius (npm) Dec 13, 2021
Mattermost 6.0 and earlier fails to sufficiently validate the email address during registration,... Moderate Unreviewed
CVE-2021-37862 was published Dec 18, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database