GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,046
Maven
5,000+
npm
3,737
NuGet
663
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
157 advisories
Filter by severity
In btif, there is a possible memory corruption due to incorrect error handling. This could lead...
Moderate
Unreviewed
CVE-2022-20057
was published
Mar 11, 2022
Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to...
Moderate
Unreviewed
CVE-2022-27841
was published
Apr 12, 2022
In atf (hwfde), there is a possible leak of sensitive information due to incorrect error handling...
Moderate
Unreviewed
CVE-2022-20066
was published
Apr 12, 2022
In ged, there is a possible memory corruption due to an incorrect error handling. This could lead...
Moderate
Unreviewed
CVE-2022-20076
was published
Apr 12, 2022
An improper handling of exceptional conditions vulnerability exists in the DNS proxy feature of...
Moderate
Unreviewed
CVE-2022-0023
was published
Apr 14, 2022
Dell EMC PowerScale OneFS versions 8.1.2 – 9.1.0 contain an issue where the OneFS SMB directory...
Moderate
Unreviewed
CVE-2020-26195
was published
May 24, 2022
Receipt of a specifically malformed NDP packet sent from the local area network (LAN) to a device...
Moderate
Unreviewed
CVE-2020-1681
was published
May 24, 2022
When an attacker sends a specific crafted Ethernet Operation, Administration, and Maintenance ...
Moderate
Unreviewed
CVE-2020-1639
was published
May 24, 2022
Shadankun Server Security Type (excluding normal blocking method types) Ver.1.5.3 and earlier...
Moderate
Unreviewed
CVE-2020-5622
was published
May 24, 2022
Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to...
Moderate
Unreviewed
CVE-2022-36874
was published
Sep 10, 2022
The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled...
Moderate
Unreviewed
CVE-2020-12888
was published
May 24, 2022
An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a host OS crash...
Moderate
Unreviewed
CVE-2020-15566
was published
May 24, 2022
There is a denial of service vulnerability in some versions of ManageOne. There is a logic error...
Moderate
Unreviewed
CVE-2021-22409
was published
May 24, 2022
Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers...
Moderate
Unreviewed
CVE-2022-30725
was published
Jun 8, 2022
Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers...
Moderate
Unreviewed
CVE-2022-30724
was published
Jun 8, 2022
Improper handling of insufficient permissions vulnerability in addAppPackageNameToAllowList in...
Moderate
Unreviewed
CVE-2022-30727
was published
Jun 8, 2022
Unprotected broadcast in sendIntentForToastDumpLog in DisplayToast prior to SMR Jun-2022 Release...
Moderate
Unreviewed
CVE-2022-30716
was published
Jun 8, 2022
Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers...
Moderate
Unreviewed
CVE-2022-30723
was published
Jun 8, 2022
An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allows attackers to trigger an...
Moderate
Unreviewed
CVE-2022-32990
was published
Jun 25, 2022
Multiple products of CODESYS implement a improper error handling. A low privilege remote attacker...
Moderate
Unreviewed
CVE-2022-1965
was published
Jun 25, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit...
Moderate
Unreviewed
CVE-2022-34641
was published
Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit...
Moderate
Unreviewed
CVE-2022-34636
was published
Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as...
Moderate
Unreviewed
CVE-2022-34639
was published
Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted...
Moderate
Unreviewed
CVE-2022-34633
was published
Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted...
Moderate
Unreviewed
CVE-2022-34634
was published
Jul 19, 2022
ProTip!
Advisories are also available from the
GraphQL API