Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

4,883 advisories

Loading
IBM Security Verify Access could allow a user, using man in the middle techniques, to obtain... Moderate Unreviewed
CVE-2022-22311 was published Apr 1, 2022
Microsoft SharePoint Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-42320. Moderate Unreviewed
CVE-2021-43242 was published Dec 16, 2021
In Messaging, there is a possible way to bypass attachment restrictions due to improper input... Moderate Unreviewed
CVE-2021-39740 was published Mar 31, 2022
A vulnerability in the Web-Based Reputation Score (WBRS) engine of Cisco AsyncOS Software for... Moderate Unreviewed
CVE-2022-20784 was published Apr 7, 2022
ASUS RT-AC86U has improper user request handling, which allows an unauthenticated LAN attacker to... Moderate Unreviewed
CVE-2022-25595 was published Apr 8, 2022
An improper input validation vulnerability in the sniffer interface of FortiSandbox before 3.2.2... Moderate Unreviewed
CVE-2020-29013 was published Apr 7, 2022
Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 98.0.4758... Moderate Unreviewed
CVE-2022-0455 was published Apr 6, 2022
In vow, there is a possible read of uninitialized data due to a improper input validation. This... Moderate Unreviewed
CVE-2022-20079 was published Apr 12, 2022
In ssmr, there is a possible out of bounds write due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2022-20070 was published Apr 12, 2022
When a user opens a manipulated Universal 3D (.u3d, 3difr.x3d) received from untrusted sources in... Moderate Unreviewed
CVE-2022-27655 was published Apr 13, 2022
When a user opens a manipulated Picture Exchange (.pcx, 2d.x3d) received from untrusted sources... Moderate Unreviewed
CVE-2022-26108 was published Apr 13, 2022
When a user opens a manipulated Photoshop Document (.psd, 2d.x3d) received from untrusted sources... Moderate Unreviewed
CVE-2022-27654 was published Apr 13, 2022
When a user opens a manipulated Portable Document Format (.pdf, PDFView.x3d) received from... Moderate Unreviewed
CVE-2022-26109 was published Apr 13, 2022
When a user opens a manipulated Computer Graphics Metafile (.cgm, CgmCore.dll) received from... Moderate Unreviewed
CVE-2022-26106 was published Apr 13, 2022
A vulnerability has been identified in SCALANCE W1788-1 M12 (All versions < V3.0.0), SCALANCE... Moderate Unreviewed
CVE-2022-28329 was published Apr 13, 2022
A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients... Moderate Unreviewed
CVE-2022-20684 was published Apr 16, 2022
A vulnerability in the integrated wireless access point (AP) packet processing of the Cisco 1000... Moderate Unreviewed
CVE-2022-20761 was published Apr 16, 2022
Login screen allows message spoofing if SSO is enabled Moderate
CVE-2022-24905 was published for github.com/argoproj/argo-cd (Go) May 24, 2022
When a user opens a manipulated Jupiter Tesselation (.jt, JTReader.x3d) received from untrusted... Moderate Unreviewed
CVE-2022-26107 was published Apr 13, 2022
Missing validation causes `TensorSummaryV2` to crash Moderate
CVE-2022-29193 was published for tensorflow (pip) May 24, 2022
phpCAS before 1.1.2 allows remote authenticated users to hijack sessions via a query string... Moderate Unreviewed
CVE-2010-2795 was published May 17, 2022
Missing validation causes denial of service via `StagePeek` Moderate
CVE-2022-29195 was published for tensorflow (pip) May 24, 2022
A vulnerability in the XSI-Actions interface of Cisco BroadWorks Application Server could allow... Moderate Unreviewed
CVE-2021-1562 was published May 24, 2022
Missing validation results in undefined behavior in `SparseTensorDenseAdd Moderate
CVE-2022-29206 was published for tensorflow (pip) May 24, 2022
Missing validation causes denial of service via `LoadAndRemapMatrix` Moderate
CVE-2022-29199 was published for tensorflow (pip) May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database