Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

46 advisories

Loading
In search engine service, there is a possible way to change the default search engine due to an... Moderate Unreviewed
CVE-2022-20072 was published Apr 12, 2022
An Incorrect Comparison vulnerability in PFE of Juniper Networks Junos OS allows an adjacent... Moderate Unreviewed
CVE-2022-22203 was published Jul 21, 2022
Incorrect Comparison in NumPy Moderate
CVE-2021-34141 was published for numpy (pip) Dec 18, 2021
SWFTools commit 772e55a2 was discovered to contain a floating point exception (FPE) via DCTStream... Moderate Unreviewed
CVE-2022-35091 was published Sep 25, 2022
JetBrains Ktor before 2.1.0 was vulnerable to a Reflect File Download attack Moderate
CVE-2022-38179 was published for io.ktor:ktor (Maven) Aug 13, 2022
Regular expression denial of service in eth-account Moderate
CVE-2022-1930 was published for eth-account (pip) Aug 23, 2022
An issue was discovered in Proofpoint Email Protection through 2019-09-08. By collecting scores... Moderate Unreviewed
CVE-2019-20634 was published May 24, 2022
A denial of service vulnerability was found in n_tty_receive_char_special in drivers/tty/n_tty.c... Moderate Unreviewed
CVE-2021-20219 was published May 24, 2022
The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as... Moderate Unreviewed
CVE-2020-28200 was published May 24, 2022
A vulnerability in the Distance Vector Multicast Routing Protocol (DVMRP) of Juniper Networks... Moderate Unreviewed
CVE-2021-0295 was published May 24, 2022
An issue was discovered in libjpeg through 2020021. An uncaught floating point exception in the... Moderate Unreviewed
CVE-2021-39514 was published May 24, 2022
jpeg-quantsmooth before commit 8879454 contained a floating point exception (FPE) via /jpeg... Moderate Unreviewed
CVE-2022-35434 was published Aug 17, 2022
fdkaac commit 53fe239 was discovered to contain a floating point exception (FPE) via wav_open at ... Moderate Unreviewed
CVE-2022-36148 was published Aug 17, 2022
XPDF commit ffaf11c was discovered to contain a floating point exception (FPE) via DCTStream:... Moderate Unreviewed
CVE-2022-38230 was published Aug 17, 2022
JPEGDEC commit be4843c was discovered to contain a FPE via DecodeJPEG at /src/jpeg.inl. Moderate Unreviewed
CVE-2022-34999 was published Aug 17, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.9 before 14... Moderate Unreviewed
CVE-2021-39917 was published Dec 14, 2021
Google Chrome before 16.0.912.63 does not properly perform regex matching, which allows remote... Moderate Unreviewed
CVE-2011-3903 was published May 13, 2022
On BIG-IP versions 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, 13.1.x beginning in 13.1.3.6, 12... Moderate Unreviewed
CVE-2022-23027 was published Jan 26, 2022
A flaw was found in openshift-ansible. OpenShift Container Platform (OCP) 3.11 is too permissive... Moderate Unreviewed
CVE-2020-1741 was published May 24, 2022
The Remote Mount feature can potentially be abused by valid, authenticated users to make... Moderate Unreviewed
CVE-2022-34888 was published Jan 31, 2023
In SoX 14.4.2, there is a floating-point exception in lsx_aiffstartwrite in aiff.c in libsox.a. Moderate Unreviewed
CVE-2022-31650 was published May 26, 2022
Dell SupportAssist for Home PCs (version 3.11.2 and prior) contain Overly Permissive Cross-domain... Moderate Unreviewed
CVE-2022-34366 was published Feb 10, 2023
Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804. Moderate Unreviewed
CVE-2022-4293 was published Dec 5, 2022
A Segmentation fault caused by a floating point exception exists in Gpac through 1.0.1 using... Moderate Unreviewed
CVE-2021-40562 was published Jan 13, 2022
Dell Wyse ThinOS 2205 contains a Regular Expression Denial of Service Vulnerability in UI. An... Moderate Unreviewed
CVE-2022-34402 was published Oct 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database