Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,218
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

131 advisories

Loading
Improper check or handling of exception conditions vulnerability in Samsung Pay (US only) prior... Moderate Unreviewed
CVE-2021-25525 was published Dec 9, 2021
Mattermost 6.0 and earlier fails to sufficiently validate the email address during registration,... Moderate Unreviewed
CVE-2021-37862 was published Dec 18, 2021
Improper conditions check in the Intel(R) IPP Crypto library before version 2021.2 may allow an... Moderate Unreviewed
CVE-2021-33147 was published Feb 11, 2022
Improper conditions check in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM)... Moderate Unreviewed
CVE-2021-33139 was published Feb 11, 2022
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could... Moderate Unreviewed
CVE-2022-24323 was published Mar 11, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Routing Protocol... Moderate Unreviewed
CVE-2022-22196 was published Apr 15, 2022
A vulnerability in the Cisco Discovery Protocol of Cisco Unified Communications Manager (Unified... Moderate Unreviewed
CVE-2022-20804 was published Apr 22, 2022
Given the TEE is compromised and controlled by the attacker, improper state maintenance in... Moderate Unreviewed
CVE-2022-28793 was published May 4, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... Moderate Unreviewed
CVE-2022-26130 was published May 6, 2022
gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during... Moderate Unreviewed
CVE-2019-9633 was published May 13, 2022
An issue was discovered in Xen through 4.9.x allowing HVM guest OS users to cause a denial of... Moderate Unreviewed
CVE-2017-17044 was published May 13, 2022
Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11... Moderate Unreviewed
CVE-2018-12189 was published May 13, 2022
In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem... Moderate Unreviewed
CVE-2018-18690 was published May 13, 2022
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP... Moderate Unreviewed
CVE-2018-7287 was published May 13, 2022
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash... Moderate Unreviewed
CVE-2017-13142 was published May 14, 2022
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver (on all versions prior to R28.3)... Moderate Unreviewed
CVE-2019-5673 was published May 14, 2022
FastStone Image Viewer 6.5 has an Exception Handler Chain Corrupted issue starting at... Moderate Unreviewed
CVE-2018-15815 was published May 14, 2022
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in is_mmacro() in asm... Moderate Unreviewed
CVE-2017-17815 was published May 14, 2022
The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document... Moderate Unreviewed
CVE-2019-11459 was published May 24, 2022
A vulnerability in the Border Gateway Patrol (BGP) Multiprotocol Label Switching (MPLS)-based... Moderate Unreviewed
CVE-2019-1849 was published May 24, 2022
A CWE-754 Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex... Moderate Unreviewed
CVE-2018-7803 was published May 24, 2022
An exploitable denial of service vulnerability exists in the object lookup functionality of Yara... Moderate Unreviewed
CVE-2019-5020 was published May 24, 2022
IrfanView 4.53 allows a Exception Handler Chain to be Corrupted starting at EXR!ReadEXR... Moderate Unreviewed
CVE-2019-17257 was published May 24, 2022
The SRX flowd process, responsible for packet forwarding, may crash and restart when processing... Moderate Unreviewed
CVE-2019-0068 was published May 24, 2022
A flaw was found in cri-o, as a result of all pod-related processes being placed in the same... Moderate Unreviewed
CVE-2019-14891 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database