Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
58
GitHub Actions
50
Go
3,791
Maven
5,000+
npm
5,000+
NuGet
938
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,349
Swift
54
Unreviewed advisories
All unreviewed
5,000+

484 advisories

Loading
Dell PowerScale OneFS versions 8.2.x - 9.3.0.x contains a denial-of-service vulnerability in... High Unreviewed
CVE-2022-23161 was published Apr 13, 2022
In ged, there is a possible memory corruption due to an incorrect error handling. This could lead... Moderate Unreviewed
CVE-2022-20076 was published Apr 12, 2022
In atf (hwfde), there is a possible leak of sensitive information due to incorrect error handling... Moderate Unreviewed
CVE-2022-20066 was published Apr 12, 2022
Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to... Moderate Unreviewed
CVE-2022-27841 was published Apr 12, 2022
A flaw was found in darkhttpd. Invalid error handling allows remote attackers to cause denial-of... High Unreviewed
CVE-2020-25691 was published Apr 3, 2022
NVIDIA DCGM contains a vulnerability in nvhostengine, where a network user can cause detection of... Moderate Unreviewed
CVE-2022-21820 was published Mar 25, 2022
In btif, there is a possible memory corruption due to incorrect error handling. This could lead... Moderate Unreviewed
CVE-2022-20057 was published Mar 11, 2022
Improper Handling of Exceptional Conditions inn metadata-extractor Moderate
CVE-2022-24613 was published for com.drewnoakes:metadata-extractor (Maven) Feb 25, 2022
ZGorlock Credited to ZGorlock
Uncaught Exception in zip4j Moderate
CVE-2022-24615 was published for net.lingala.zip4j:zip4j (Maven) Feb 25, 2022
srikanth-lingala Credited to srikanth-lingala
Improper Input Validation and Excessive Iteration in Go Facebook Thrift High
CVE-2019-3564 was published for github.com/facebook/fbthrift (Go) Feb 15, 2022
oliverchang Credited to oliverchang
A vulnerability was found in the Linux kernel's eBPF verifier when handling internal data... Moderate Unreviewed
CVE-2022-0264 was published Feb 11, 2022
A memory corruption vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader,... High Unreviewed
CVE-2022-22150 was published Feb 11, 2022
In Bluetooth, there is a possible information disclosure due to incorrect error handling. This... Moderate Unreviewed
CVE-2022-20042 was published Feb 11, 2022
Uncaught exception in the Intel(R) Trace Analyzer and Collector before version 2021.5 may allow... Moderate Unreviewed
CVE-2022-21218 was published Feb 11, 2022
An improper handling of exceptional conditions vulnerability exists within the Connect Before... High Unreviewed
CVE-2022-0016 was published Feb 11, 2022
Improper Handling of Exceptional Conditions and Improper Input Validation in Reactor Netty High
CVE-2020-5403 was published for io.projectreactor.netty:reactor-netty-http (Maven) Feb 10, 2022
Improper Handling of Exceptional Conditions, Improper Check for Unusual or Exceptional Conditions... High Unreviewed
CVE-2021-22285 was published Feb 10, 2022
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel driver package, where... Moderate Unreviewed
CVE-2022-21814 was published Feb 8, 2022
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel driver, where improper... Moderate Unreviewed
CVE-2022-21813 was published Feb 8, 2022
On BIG-IP AFM version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and... High Unreviewed
CVE-2022-23018 was published Jan 26, 2022
A release of illegal memory vulnerability in the snmpd daemon of Juniper Networks Junos OS, Junos... High Unreviewed
CVE-2022-22177 was published Jan 20, 2022
In sortSimPhoneAccountsForEmergency of CreateConnectionProcessor.java, there is a possible... Moderate Unreviewed
CVE-2021-39659 was published Jan 15, 2022
Incorrect download source UI in Downloads in Samsung Internet prior to 16.0.6.23 allows attackers... Moderate Unreviewed
CVE-2022-22290 was published Jan 15, 2022
Uncaught Exception in engine.io High
CVE-2022-21676 was published for engine.io (npm) Jan 13, 2022
marwej Credited to marwej
An improper check or handling of exceptional conditions in NPU driver prior to SMR Jan-2022... High Unreviewed
CVE-2022-22265 was published Jan 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database