Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

176 advisories

Loading
Cloud Foundry Loggregator, versions 89.x prior to 89.5 or 96.x prior to 96.1 or 99.x prior to 99... Moderate Unreviewed
CVE-2018-1269 was published May 13, 2022
Uncontrolled Resource Consumption in transpile Moderate
CVE-2021-23429 was published for transpile (npm) Sep 2, 2021
Exposure of Sensitive Information in keycloak Moderate
CVE-2020-1744 was published for org.keycloak:keycloak-core (Maven) Sep 20, 2021
In getTitle of AccessPoint.java, there is a possible unhandled exception due to a missing null... Moderate Unreviewed
CVE-2021-0969 was published Dec 16, 2021
An unhandled exception in job log parsing in GitLab CE/EE affecting all versions prior to 15.2.5,... Moderate Unreviewed
CVE-2022-3279 was published Oct 17, 2022
Certain 802.11 network management messages have been determined to invoke wireless access point... Moderate Unreviewed
CVE-2017-9658 was published May 13, 2022
A vulnerability in the Secure Sockets Layer (SSL) Engine of Cisco Firepower System Software could... Moderate Unreviewed
CVE-2018-0272 was published May 13, 2022
Under specific 802.11 network conditions, a partial re-association of the Philips IntelliVue MX40... Moderate Unreviewed
CVE-2017-9657 was published May 13, 2022
A vulnerability in the detection engine that handles Secure Sockets Layer (SSL) packets for Cisco... Moderate Unreviewed
CVE-2017-3887 was published May 13, 2022
A vulnerability in SMART-SSL Accelerator functionality for Cisco Wide Area Application Services ... Moderate Unreviewed
CVE-2017-6628 was published May 13, 2022
Bento4 v1.6.0.0 was discovered to contain a segmentation fault via the component /x86_64... Moderate Unreviewed
CVE-2022-29017 was published May 17, 2022
In wlan, there is a possible use after free due to an incorrect status check. This could lead to... Moderate Unreviewed
CVE-2022-32590 was published Oct 8, 2022
Improper handling of exceptional conditions vulnerability in KONICA MINOLTA bizhub series (bizhub... Moderate Unreviewed
CVE-2021-20870 was published Jan 5, 2022
Possible denial of service due to improper handling of debug register trap from user applications... Moderate Unreviewed
CVE-2021-30283 was published Jan 4, 2022
The HwNearbyMain module has a Improper Handling of Exceptional Conditions vulnerability... Moderate Unreviewed
CVE-2021-37118 was published Jan 4, 2022
In sortSimPhoneAccountsForEmergency of CreateConnectionProcessor.java, there is a possible... Moderate Unreviewed
CVE-2021-39659 was published Jan 15, 2022
Incorrect download source UI in Downloads in Samsung Internet prior to 16.0.6.23 allows attackers... Moderate Unreviewed
CVE-2022-22290 was published Jan 15, 2022
In Bluetooth, there is a possible information disclosure due to incorrect error handling. This... Moderate Unreviewed
CVE-2022-20042 was published Feb 11, 2022
Uncaught exception in the Intel(R) Trace Analyzer and Collector before version 2021.5 may allow... Moderate Unreviewed
CVE-2022-21218 was published Feb 11, 2022
Uncaught Exception in zip4j Moderate
CVE-2022-24615 was published for net.lingala.zip4j:zip4j (Maven) Feb 25, 2022
srikanth-lingala
Dell XPS 13 9370 BIOS versions prior to 1.13.1 contains an Improper Exception Handling... Moderate Unreviewed
CVE-2020-5387 was published May 24, 2022
Improper Handling of Exceptional Conditions inn metadata-extractor Moderate
CVE-2022-24613 was published for com.drewnoakes:metadata-extractor (Maven) Feb 25, 2022
ZGorlock
A user authorized to perform database queries may cause denial of service by issuing specially... Moderate Unreviewed
CVE-2020-7923 was published May 24, 2022
An issue was discovered in Xen through 4.14.x. There is mishandling of the constraint that once... Moderate Unreviewed
CVE-2020-25597 was published May 24, 2022
A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read... Moderate Unreviewed
CVE-2020-14304 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database