GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,793
Erlang
29
GitHub Actions
16
Go
1,710
Maven
4,947
npm
3,475
NuGet
605
pip
3,001
Pub
10
RubyGems
828
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
159 advisories
Filter by severity
XWiki Platform vulnerable to page render failure due to broken translations
Moderate
CVE-2023-29520
was published
for
org.xwiki.platform:xwiki-platform-localization-source-wiki
(Maven)
Apr 20, 2023
An Improper Check or Handling of Exceptional Conditions vulnerability in packet processing on the...
Moderate
Unreviewed
CVE-2023-28970
was published
Apr 18, 2023
Comrak AST node data is not validated (GHSL-2023-049)
Moderate
CVE-2023-28631
was published
for
comrak
(Rust)
Mar 28, 2023
Cilium eBPF filters may be temporarily removed during agent restart
Moderate
CVE-2023-27595
was published
for
github.com/cilium/cilium
(Go)
Mar 17, 2023
An Improper Handling of Exceptional Conditions vulnerability in obs-service-go_modules of...
Moderate
Unreviewed
CVE-2022-45155
was published
Mar 15, 2023
xwiki vulnerable to Improper Handling of Exceptional Conditions
Moderate
CVE-2023-26479
was published
for
org.xwiki.platform:xwiki-platform-rendering-parser
(Maven)
Mar 3, 2023
Improper conditions check in the Intel(R) SGX SDK software may allow a privileged user to...
Moderate
Unreviewed
CVE-2022-26509
was published
Feb 16, 2023
Uncaught exception in the Intel(R) Iris(R) Xe MAX drivers for Windows before version 100.0.5.1436...
Moderate
Unreviewed
CVE-2022-34849
was published
Feb 16, 2023
Uncaught exception in webserver for the Integrated BMC in some Intel(R) platforms before versions...
Moderate
Unreviewed
CVE-2022-29493
was published
Feb 16, 2023
Uncaught exception in the FCS Server software maintained by Intel before version 1.1.79.3 may...
Moderate
Unreviewed
CVE-2022-36287
was published
Feb 16, 2023
nadesiko3 allows remote attacker to inject invalid value to decodeURIComponent of nako3edit
Moderate
CVE-2022-41777
was published
for
nadesiko3
(npm)
Dec 5, 2022
An unhandled exception in job log parsing in GitLab CE/EE affecting all versions prior to 15.2.5,...
Moderate
Unreviewed
CVE-2022-3279
was published
Oct 17, 2022
lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call...
Moderate
Unreviewed
CVE-2022-33748
was published
Oct 11, 2022
In wlan, there is a possible use after free due to an incorrect status check. This could lead to...
Moderate
Unreviewed
CVE-2022-32590
was published
Oct 8, 2022
rdiffweb 2.4.1 Missing Custom Error Page
Moderate
CVE-2022-3175
was published
for
rdiffweb
(pip)
Sep 14, 2022
Under certain conditions, the application SAP BusinessObjects Business Intelligence Platform ...
Moderate
Unreviewed
CVE-2022-35295
was published
Sep 14, 2022
Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to...
Moderate
Unreviewed
CVE-2022-36874
was published
Sep 10, 2022
Dell EMC NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x and 19.7.0.0 contain an Improper...
Moderate
Unreviewed
CVE-2022-34368
was published
Aug 31, 2022
Directus vulnerable to unhandled exception on illegal filename_disk value
Moderate
CVE-2022-36031
was published
for
directus
(npm)
Aug 30, 2022
An Improper Handling of Exceptional Conditions vulnerability on specific PTX Series devices,...
Moderate
Unreviewed
CVE-2022-22202
was published
Jul 21, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted...
Moderate
Unreviewed
CVE-2022-34633
was published
Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as...
Moderate
Unreviewed
CVE-2022-34639
was published
Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted...
Moderate
Unreviewed
CVE-2022-34634
was published
Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit...
Moderate
Unreviewed
CVE-2022-34641
was published
Jul 19, 2022
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a implements an incorrect exception type when...
Moderate
Unreviewed
CVE-2022-34637
was published
Jul 19, 2022
ProTip!
Advisories are also available from the
GraphQL API