GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,973

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

386 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Brave Browser before 1.42.51 allowed a remote attacker to cause a denial of service via a crafted... Moderate Unreviewed

CVE-2022-47933 was published Dec 25, 2022

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2... High Unreviewed

CVE-2022-46403 was published Dec 20, 2022

In loadFromXml of ShortcutPackage.java, there is a possible crash on boot due to an uncaught... Moderate Unreviewed

CVE-2022-20500 was published Dec 13, 2022

An improper handling of exceptional conditions vulnerability in Trend Micro Apex One and Apex One... High Unreviewed

CVE-2022-44652 was published Dec 12, 2022

Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in... Low Unreviewed

CVE-2022-39912 was published Dec 8, 2022

Redmine 5.x before 5.0.4 allows downloading of file attachments of any Issue or any Wiki page due... High Unreviewed

CVE-2022-44030 was published Dec 7, 2022

A vulnerability in the processing of SSH connections of Cisco Firepower Management Center (FMC)... High Unreviewed

CVE-2022-20854 was published Nov 16, 2022

Uncaught exception in the firmware for some Intel(R) Server Board M50CYP Family before version... Moderate Unreviewed

CVE-2022-25917 was published Nov 11, 2022

Improper access control vulnerability in BootCompletedReceiver_CMCC in DeviceManagement prior to... Low Unreviewed

CVE-2022-39885 was published Nov 10, 2022

Improper access control vulnerability in IpcRxServiceModeBigDataInfo in RIL prior to SMR Nov-2022... Low Unreviewed

CVE-2022-39886 was published Nov 10, 2022

In setImpl of AlarmManagerService.java, there is a possible way to put a device into a boot loop... Moderate Unreviewed

CVE-2022-20414 was published Nov 9, 2022

A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed

CVE-2022-35268 was published Oct 25, 2022

An unhandled exception in job log parsing in GitLab CE/EE affecting all versions prior to 15.2.5,... Moderate Unreviewed

CVE-2022-3279 was published Oct 17, 2022

lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call... Moderate Unreviewed

CVE-2022-33748 was published Oct 11, 2022

A vulnerability in the SSH implementation of Cisco IOS Software and Cisco IOS XE Software could... High Unreviewed

CVE-2022-20920 was published Oct 11, 2022

In wlan, there is a possible use after free due to an incorrect status check. This could lead to... Moderate Unreviewed

CVE-2022-32590 was published Oct 8, 2022

Improper restriction of broadcasting Intent in ShareLive prior to version 13.2.03.5 leaks MAC... Low Unreviewed

CVE-2022-39872 was published Oct 7, 2022

A maliciously crafted PDF file when parsed through Autodesk AutoCAD 2023 causes an unhandled... High Unreviewed

CVE-2022-33887 was published Oct 4, 2022

A maliciously crafted MODEL and SLDPRT file can be used to write beyond the allocated buffer... High Unreviewed

CVE-2022-33886 was published Oct 4, 2022

A vulnerability in the processing of malformed Common Industrial Protocol (CIP) packets that are... High Unreviewed

CVE-2022-20919 was published Oct 1, 2022

Under certain conditions, the application SAP BusinessObjects Business Intelligence Platform ... Moderate Unreviewed

CVE-2022-35295 was published Sep 14, 2022

Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to... Moderate Unreviewed

CVE-2022-36874 was published Sep 10, 2022

** UNSUPPORTED WHEN ASSIGNED ** sys/netinet/tcp_timer.h in FreeBSD before 7.0 contains a denial... High Unreviewed

CVE-2022-32264 was published Sep 7, 2022

Dell EMC NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x and 19.7.0.0 contain an Improper... Moderate Unreviewed

CVE-2022-34368 was published Aug 31, 2022

Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager,... High Unreviewed

CVE-2022-36923 was published Aug 11, 2022

Previous 1…6…16 Next

Previous 1 2 3 4 5 6 7 8 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

386 advisories