Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

319 advisories

Loading
Improper Check for Unusual or Exceptional Conditions vulnerability handling requests in Apache... High Unreviewed
CVE-2022-32749 was published Dec 19, 2022
In sysmmu_map of sysmmu.c, there is a possible EoP due to a precondition check failure. This... Moderate Unreviewed
CVE-2022-20588 was published Dec 21, 2022
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37... Moderate Unreviewed
CVE-2021-44856 was published Dec 26, 2022
An improper check for unusual or exceptional conditions in the HTTP request processing function... High Unreviewed
CVE-2022-43393 was published Jan 11, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in BGP route processing of... High Unreviewed
CVE-2023-22393 was published Jan 13, 2023
Froxlor contains Unchecked Error Condition Moderate
CVE-2023-0572 was published for froxlor/froxlor (Composer) Jan 30, 2023
An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50(ABTG.0... Moderate Unreviewed
CVE-2022-45854 was published Feb 7, 2023
Cipher.update_into can corrupt memory if passed an immutable python object as the outbuf Moderate
CVE-2023-23931 was published for cryptography (pip) Feb 7, 2023
IPFS go-bitfield vulnerable to DoS via malformed size arguments Moderate
CVE-2023-23626 was published for github.com/ipfs/go-bitfield (Go) Feb 10, 2023
Jorropo
Improper conditions check in the Intel(R) SUR software before version 2.4.8902 may allow an... High Unreviewed
CVE-2022-30692 was published Feb 16, 2023
Improper condition check in some Intel(R) SPS firmware before version SPS_E3_06.00.03.300.0 may... Moderate Unreviewed
CVE-2022-36794 was published Feb 16, 2023
Improper conditions check in the Open CAS software maintained by Intel(R) before version 22.3.1... Moderate Unreviewed
CVE-2022-29523 was published Feb 16, 2023
HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0... High Unreviewed
CVE-2021-32846 was published Feb 18, 2023
Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol... Moderate Unreviewed
CVE-2022-3192 was published Mar 31, 2023
libiec61850 v1.5.1 was discovered to contain a segmentation violation via the function... High Unreviewed
CVE-2023-27772 was published Apr 13, 2023
An Improper Check or Handling of Exceptional Conditions within the storm control feature of... High Unreviewed
CVE-2023-28965 was published Apr 18, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the bbe-smgd of Juniper... Moderate Unreviewed
CVE-2023-28974 was published Apr 18, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper... Moderate Unreviewed
CVE-2023-28979 was published Apr 18, 2023
An Unexpected Status Code or Return Value vulnerability in the kernel of Juniper Networks Junos... Moderate Unreviewed
CVE-2023-28975 was published Apr 18, 2023
An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding... High Unreviewed
CVE-2023-28976 was published Apr 18, 2023
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that... Moderate Unreviewed
CVE-2023-25620 was published Apr 19, 2023
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could... High Unreviewed
CVE-2023-25619 was published Apr 19, 2023
Insufficient validation when decoding a Socket.IO packet High
CVE-2023-32695 was published for socket.io-parser (npm) May 23, 2023
rafax00 darrachequesne
In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and Splunk Cloud Platform versions... Moderate Unreviewed
CVE-2023-32716 was published Jun 1, 2023
A mishandled security check when creating a WebSocket in a WebWorker caused the Content Security... Moderate Unreviewed
CVE-2023-23602 was published Jun 2, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database