Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

113 advisories

Loading
Dynamic Linq vulnerable to remote code execution Critical
CVE-2023-32571 was published for System.Linq.Dynamic.Core (NuGet) Jun 22, 2023
Sentry CORS misconfiguration Moderate
CVE-2023-36829 was published for sentry (pip) Jul 6, 2023
andr0idp4r4n0id
Inefficient Regular Expression Complexity in chalk/ansi-regex High
CVE-2021-3807 was published for ansi-regex (npm) Sep 20, 2021
MylesBorins cji-stripe
G-Rath
NLTK Vulnerable to REDoS High
CVE-2021-3828 was published for nltk (pip) Sep 29, 2021
github.com/tidwall/gjson Vulnerable to REDoS attack High
CVE-2021-42836 was published for github.com/tidwall/gjson (Go) Oct 25, 2021
Incorrect Comparison in sodiumoxide Critical
CVE-2019-25002 was published for sodiumoxide (Rust) Aug 25, 2021
ruuda
Dell Wyse ThinOS 2205 contains a Regular Expression Denial of Service Vulnerability in UI. An... Moderate Unreviewed
CVE-2022-34402 was published Oct 11, 2022
A limited authentication bypass vulnerability was discovered that could allow an attacker to... High Unreviewed
CVE-2022-22990 was published Jan 14, 2022
A Segmentation fault caused by a floating point exception exists in Gpac through 1.0.1 using... Moderate Unreviewed
CVE-2021-40562 was published Jan 13, 2022
This vulnerability allows network-adjacent attackers to bypass authentication on affected... High Unreviewed
CVE-2022-27645 was published Mar 29, 2023
Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804. Moderate Unreviewed
CVE-2022-4293 was published Dec 5, 2022
This vulnerability allows network-adjacent attackers to bypass authentication on affected... High Unreviewed
CVE-2022-43621 was published Mar 29, 2023
Insecure Comparison in secure-compare High
CVE-2015-9238 was published for secure-compare (npm) Jun 3, 2019
tdunlap607
TensorFlow has Segfault in Bincount with XLA High
CVE-2023-25675 was published for tensorflow (pip) Mar 24, 2023
TensorFlow has Floating Point Exception in TFLite in conv kernel High
CVE-2023-27579 was published for tensorflow (pip) Mar 24, 2023
TensorFlow has Floating Point Exception in AvgPoolGrad with XLA High
CVE-2023-25669 was published for tensorflow (pip) Mar 24, 2023
TensorFlow has Floating Point Exception in TensorListSplit with XLA High
CVE-2023-25673 was published for tensorflow (pip) Mar 24, 2023
TensorFlow has Floating Point Exception in AudioSpectrogram High
CVE-2023-25666 was published for tensorflow (pip) Mar 24, 2023
Dell SupportAssist for Home PCs (version 3.11.2 and prior) contain Overly Permissive Cross-domain... Moderate Unreviewed
CVE-2022-34366 was published Feb 10, 2023
A type juggling vulnerability in the component /auth/fn.php of PlaySMS v1.4.5 and earlier allows... Critical Unreviewed
CVE-2022-47034 was published Feb 14, 2023
In SoX 14.4.2, there is a floating-point exception in lsx_aiffstartwrite in aiff.c in libsox.a. Moderate Unreviewed
CVE-2022-31650 was published May 26, 2022
The Remote Mount feature can potentially be abused by valid, authenticated users to make... Moderate Unreviewed
CVE-2022-34888 was published Jan 31, 2023
A flaw was found in openshift-ansible. OpenShift Container Platform (OCP) 3.11 is too permissive... Moderate Unreviewed
CVE-2020-1741 was published May 24, 2022
On BIG-IP versions 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, 13.1.x beginning in 13.1.3.6, 12... Moderate Unreviewed
CVE-2022-23027 was published Jan 26, 2022
An issue was discovered in split_region in uc.c in Unicorn Engine before 2.0.0-rc5. It allows... High Unreviewed
CVE-2021-44078 was published Dec 27, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database