Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

5,154 advisories

Loading
An exploitable privilege escalation vulnerability exists in the helper service of Clean My Mac X,... Moderate Unreviewed
CVE-2018-4041 was published May 13, 2022
An exploitable local denial-of-service vulnerability exists in the privileged helper tool of GOG... Moderate Unreviewed
CVE-2018-4053 was published May 13, 2022
The CleanMyMac X software contains an exploitable privilege escalation vulnerability due to... Moderate Unreviewed
CVE-2018-4037 was published May 13, 2022
Missing validation causes denial of service via `Conv3DBackpropFilterV2` Moderate
CVE-2022-29204 was published for tensorflow (pip) May 24, 2022
Missing validation results in undefined behavior in `QuantizedConv2D` Moderate
CVE-2022-29201 was published for tensorflow (pip) May 24, 2022
A malformed input file can lead to a segfault due to an out of bounds array access in... Moderate Unreviewed
CVE-2020-25713 was published May 24, 2022
Missing validation causes denial of service via `UnsortedSegmentJoin` Moderate
CVE-2022-29197 was published for tensorflow (pip) May 24, 2022
Improper Input Validation in Mortbay Jetty Moderate
CVE-2006-2759 was published for org.mortbay.jetty:jetty (Maven) May 1, 2022
Missing validation crashes `QuantizeAndDequantizeV4Grad` Moderate
CVE-2022-29192 was published for tensorflow (pip) May 24, 2022
Missing validation causes denial of service via `LoadAndRemapMatrix` Moderate
CVE-2022-29199 was published for tensorflow (pip) May 24, 2022
Missing validation results in undefined behavior in `SparseTensorDenseAdd Moderate
CVE-2022-29206 was published for tensorflow (pip) May 24, 2022
Undefined behavior when users supply invalid resource handles Moderate
CVE-2022-29207 was published for tensorflow (pip) May 24, 2022
A vulnerability in the XSI-Actions interface of Cisco BroadWorks Application Server could allow... Moderate Unreviewed
CVE-2021-1562 was published May 24, 2022
Missing validation causes denial of service via `StagePeek` Moderate
CVE-2022-29195 was published for tensorflow (pip) May 24, 2022
phpCAS before 1.1.2 allows remote authenticated users to hijack sessions via a query string... Moderate Unreviewed
CVE-2010-2795 was published May 17, 2022
Missing validation causes `TensorSummaryV2` to crash Moderate
CVE-2022-29193 was published for tensorflow (pip) May 24, 2022
When a user opens a manipulated Jupiter Tesselation (.jt, JTReader.x3d) received from untrusted... Moderate Unreviewed
CVE-2022-26107 was published Apr 13, 2022
Login screen allows message spoofing if SSO is enabled Moderate
CVE-2022-24905 was published for github.com/argoproj/argo-cd (Go) May 24, 2022
A vulnerability in the integrated wireless access point (AP) packet processing of the Cisco 1000... Moderate Unreviewed
CVE-2022-20761 was published Apr 16, 2022
A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients... Moderate Unreviewed
CVE-2022-20684 was published Apr 16, 2022
A vulnerability has been identified in SCALANCE W1788-1 M12 (All versions < V3.0.0), SCALANCE... Moderate Unreviewed
CVE-2022-28329 was published Apr 13, 2022
When a user opens a manipulated Photoshop Document (.psd, 2d.x3d) received from untrusted sources... Moderate Unreviewed
CVE-2022-27654 was published Apr 13, 2022
When a user opens a manipulated Computer Graphics Metafile (.cgm, CgmCore.dll) received from... Moderate Unreviewed
CVE-2022-26106 was published Apr 13, 2022
When a user opens a manipulated Portable Document Format (.pdf, PDFView.x3d) received from... Moderate Unreviewed
CVE-2022-26109 was published Apr 13, 2022
When a user opens a manipulated Picture Exchange (.pcx, 2d.x3d) received from untrusted sources... Moderate Unreviewed
CVE-2022-26108 was published Apr 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database