Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,044
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

355 advisories

Loading
XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::getChar()... Moderate Unreviewed
CVE-2022-38235 was published Aug 17, 2022
SWFMill commit 53d7690 was discovered to contain a segmentation violation via SWF::Reader:... Moderate Unreviewed
CVE-2022-36145 was published Aug 17, 2022
XPDF commit ffaf11c was discovered to contain a segmentation violation via Lexer::getObj(Object*)... Moderate Unreviewed
CVE-2022-38234 was published Aug 17, 2022
SWFMill commit 53d7690 was discovered to contain a segmentation violation via SWF:... Moderate Unreviewed
CVE-2022-36140 was published Aug 17, 2022
SWFMill commit 53d7690 was discovered to contain a segmentation violation via SWF::MethodBody:... Moderate Unreviewed
CVE-2022-36141 was published Aug 17, 2022
OTFCC v0.10.4 was discovered to contain a segmentation violation via /x86_64-linux-gnu/libc.so.6... Moderate Unreviewed
CVE-2022-35469 was published Aug 17, 2022
OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump... Moderate Unreviewed
CVE-2022-35473 was published Aug 17, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... Moderate Unreviewed
CVE-2022-22217 was published Jul 21, 2022
Improper handling of CSS at-rules in lettersanitizer High
CVE-2022-31103 was published for lettersanitizer (npm) Jun 23, 2022
Improper Handling of `callbackUrl` parameter in next-auth High
CVE-2022-31093 was published for next-auth (npm) Jun 21, 2022
stensrud
Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address... Moderate Unreviewed
CVE-2022-30738 was published Jun 8, 2022
Improper Check for Unusual or Exceptional Conditions in Elasticsearch High
CVE-2022-23712 was published for org.elasticsearch:elasticsearch (Maven) Jun 7, 2022
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in PLC... High Unreviewed
CVE-2020-7538 was published May 24, 2022
Sylabs Singularity 3.5.x and 3.6.x, and SingularityPRO before 3.5-8, has an Incorrect Check of a... Critical Unreviewed
CVE-2021-33622 was published May 24, 2022
In the CODESYS V2 web server prior to V1.1.9.22 crafted web server requests can trigger a parser... High Unreviewed
CVE-2021-34585 was published May 24, 2022
An Improper Check for Unusual or Exceptional Conditions in packet processing on the MS-MPC/MS-MIC... High Unreviewed
CVE-2021-31351 was published May 24, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability combined with Improper... Moderate Unreviewed
CVE-2021-31361 was published May 24, 2022
An improper error handling in Exynos CP booting driver prior to SMR Oct-2021 Release 1 allows... Moderate Unreviewed
CVE-2021-25481 was published May 24, 2022
The time check operation of PepeAuctionSale 1.0 can be rendered ineffective by assigning a large... High Unreviewed
CVE-2020-19766 was published May 24, 2022
In Contiki 3.0, Telnet option negotiation is mishandled. During negotiation between a server and... High Unreviewed
CVE-2021-40523 was published May 24, 2022
Improper conditions check in some Intel(R) Ethernet Controllers 800 series Linux drivers before... High Unreviewed
CVE-2021-0002 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.1.2-9.1.0.x contain an Improper Check for Unusual or... Moderate Unreviewed
CVE-2021-21563 was published May 24, 2022
There is an Improper Check for Unusual or Exceptional Conditions Vulnerability in Huawei... High Unreviewed
CVE-2021-22447 was published May 24, 2022
A vulnerability in the handling of exceptional conditions in Juniper Networks Junos OS Evolved ... High Unreviewed
CVE-2021-0286 was published May 24, 2022
On Juniper Networks Junos OS devices configured with BGP origin validation using Resource Public... Moderate Unreviewed
CVE-2021-0281 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database