Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

37 advisories

Loading
An Incorrect Comparison vulnerability in the local address verification API of Juniper Networks... Moderate Unreviewed
CVE-2024-39534 was published Oct 11, 2024
The WP Hardening – Fix Your WordPress Security plugin for WordPress is vulnerable to Security... Moderate Unreviewed
CVE-2024-6641 was published Sep 18, 2024
Under certain circumstances the ExacqVision Web Services does not provide sufficient protection... Moderate Unreviewed
CVE-2024-32862 was published Aug 2, 2024
A potential attacker with access to the Westermo Lynx device would be able to execute... Moderate Unreviewed
CVE-2023-45213 was published Feb 7, 2024
IBM PowerSC 1.3, 2.0, and 2.1 uses Cross-Origin Resource Sharing (CORS) which could allow an... Moderate Unreviewed
CVE-2023-50940 was published Feb 2, 2024
Espeak-ng 1.52-dev was discovered to contain a Floating Point Exception via the function... Moderate Unreviewed
CVE-2023-49994 was published Dec 12, 2023
MultiBit HD before 0.1.2 allows attackers to conduct bit-flipping attacks that insert unspendable... Moderate Unreviewed
CVE-2015-6964 was published Sep 25, 2023
An incorrect comparison vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed
CVE-2023-23766 was published Sep 22, 2023
An incorrect comparison vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed
CVE-2023-23765 was published Aug 31, 2023
A floating point exception vulnerability was found in sox, in the lsx_aiffstartwrite function at... Moderate Unreviewed
CVE-2023-26590 was published Jul 10, 2023
A floating point exception vulnerability was found in sox, in the read_samples function at sox... Moderate Unreviewed
CVE-2023-32627 was published Jul 10, 2023
An incorrect comparison vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed
CVE-2023-23762 was published Jul 6, 2023
An issue was discovered in ONOS 2.5.1. There is an incorrect comparison of paths installed by... Moderate Unreviewed
CVE-2022-29944 was published Apr 20, 2023
An issue was discovered in ONOS 2.5.1. There is an incorrect comparison of flow rules installed... Moderate Unreviewed
CVE-2021-38364 was published Apr 20, 2023
Dell SupportAssist for Home PCs (version 3.11.2 and prior) contain Overly Permissive Cross-domain... Moderate Unreviewed
CVE-2022-34366 was published Feb 10, 2023
The Remote Mount feature can potentially be abused by valid, authenticated users to make... Moderate Unreviewed
CVE-2022-34888 was published Jan 31, 2023
Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804. Moderate Unreviewed
CVE-2022-4293 was published Dec 5, 2022
Dell Wyse ThinOS 2205 contains a Regular Expression Denial of Service Vulnerability in UI. An... Moderate Unreviewed
CVE-2022-34402 was published Oct 11, 2022
SWFTools commit 772e55a2 was discovered to contain a floating point exception (FPE) via DCTStream... Moderate Unreviewed
CVE-2022-35091 was published Sep 25, 2022
XPDF commit ffaf11c was discovered to contain a floating point exception (FPE) via DCTStream:... Moderate Unreviewed
CVE-2022-38230 was published Aug 17, 2022
fdkaac commit 53fe239 was discovered to contain a floating point exception (FPE) via wav_open at ... Moderate Unreviewed
CVE-2022-36148 was published Aug 17, 2022
jpeg-quantsmooth before commit 8879454 contained a floating point exception (FPE) via /jpeg... Moderate Unreviewed
CVE-2022-35434 was published Aug 17, 2022
JPEGDEC commit be4843c was discovered to contain a FPE via DecodeJPEG at /src/jpeg.inl. Moderate Unreviewed
CVE-2022-34999 was published Aug 17, 2022
An Incorrect Comparison vulnerability in PFE of Juniper Networks Junos OS allows an adjacent... Moderate Unreviewed
CVE-2022-22203 was published Jul 21, 2022
In SoX 14.4.2, there is a floating-point exception in lsx_aiffstartwrite in aiff.c in libsox.a. Moderate Unreviewed
CVE-2022-31650 was published May 26, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database