Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,809
Erlang
36
GitHub Actions
31
Go
2,393
Maven
5,000+
npm
4,026
NuGet
720
pip
3,818
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

58 advisories

Loading
An Improper Validation of Specified Quantity in Input vulnerability in the routing protocol... Moderate Unreviewed
CVE-2022-22166 was published Jan 20, 2022
** DISPUTED ** Varnish 2.0.6 writes data to a log file without sanitizing non-printable... Moderate Unreviewed
CVE-2009-4488 was published May 2, 2022
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site... Moderate Unreviewed
CVE-2022-31629 was published Sep 29, 2022
A lack of length validation in Snippet descriptions in GitLab CE/EE affecting all versions prior... Moderate Unreviewed
CVE-2022-2592 was published Oct 17, 2022
Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and... Moderate Unreviewed
CVE-2022-26047 was published Nov 11, 2022
Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA... Moderate Unreviewed
CVE-2022-20686 was published Dec 12, 2022
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Adaptive... Moderate Unreviewed
CVE-2022-20691 was published Dec 12, 2022
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Analog... Moderate Unreviewed
CVE-2022-20688 was published Dec 12, 2022
Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA... Moderate Unreviewed
CVE-2022-20687 was published Dec 12, 2022
In findAllDeAccounts of AccountsDb.java, there is a possible denial of service due to resource... Moderate Unreviewed
CVE-2021-0934 was published Dec 13, 2022
OX App Suite through 7.10.6 has Uncontrolled Resource Consumption via a large request body... Moderate Unreviewed
CVE-2022-37312 was published Dec 26, 2022
OX App Suite through 7.10.6 has Uncontrolled Resource Consumption via a large location request... Moderate Unreviewed
CVE-2022-37311 was published Dec 26, 2022
An Unchecked Input for Loop Condition vulnerability in a NAT library of Juniper Networks Junos OS... Moderate Unreviewed
CVE-2023-22409 was published Jan 13, 2023
A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7... Moderate Unreviewed
CVE-2022-3411 was published Feb 14, 2023
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer... Moderate Unreviewed
CVE-2023-0194 was published Apr 1, 2023
Multiple validation issues were addressed with improved input sanitization. This issue is fixed... Moderate Unreviewed
CVE-2023-27961 was published May 8, 2023
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS... Moderate Unreviewed
CVE-2023-27941 was published May 8, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20705 was published May 16, 2023
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20707 was published May 16, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20704 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20708 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20709 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20710 was published May 16, 2023
In several functions of PhoneAccountRegistrar.java, there is a possible way to prevent an access... Moderate Unreviewed
CVE-2023-21111 was published May 16, 2023
In m4u, there is a possible out of bounds write due to improper input validation. This could lead... Moderate Unreviewed
CVE-2023-20722 was published May 16, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database