GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
17 advisories
Filter by severity
Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in...
Low
Unreviewed
CVE-2022-39912
was published
Dec 8, 2022
In generateCrop of WallpaperManagerService.java, there is a possible sysui crash due to image...
Low
Unreviewed
CVE-2020-0004
was published
May 24, 2022
Uncaught exception in system driver for Intel(R) Graphics Drivers before version 15.40.44.5107...
Low
Unreviewed
CVE-2020-0511
was published
May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource...
Low
Unreviewed
CVE-2021-36282
was published
May 24, 2022
An unhandled exception in check_ignored() in apport/report.py can be exploited by a local...
Low
Unreviewed
CVE-2020-15701
was published
May 24, 2022
Improper restriction of broadcasting Intent in ShareLive prior to version 13.2.03.5 leaks MAC...
Low
Unreviewed
CVE-2022-39872
was published
Oct 7, 2022
Improper access control vulnerability in BootCompletedReceiver_CMCC in DeviceManagement prior to...
Low
Unreviewed
CVE-2022-39885
was published
Nov 10, 2022
Improper access control vulnerability in IpcRxServiceModeBigDataInfo in RIL prior to SMR Nov-2022...
Low
Unreviewed
CVE-2022-39886
was published
Nov 10, 2022
Specific Cilium configurations vulnerable to DoS via Kubernetes annotations
Low
CVE-2023-41332
was published
for
github.com/cilium/cilium
(Go)
Sep 27, 2023
Microweber missing standardized error handling mechanism
Low
CVE-2023-6599
was published
for
microweber/microweber
(Composer)
Dec 8, 2023
"FFRI yarai", "FFRI yarai Home and Business Edition" and their OEM products handle exceptional...
Low
Unreviewed
CVE-2023-39341
was published
Aug 9, 2023
SpiceDB: LookupSubjects may return partial results if a specific kind of relation is used
Low
CVE-2024-32001
was published
for
github.com/authzed/spicedb
(Go)
Apr 10, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/buddy: Fix alloc_range()...
Low
Unreviewed
CVE-2024-26911
was published
Apr 17, 2024
Bad documentation of error handling in ParseWithClaims can lead to potentially dangerous situations
Low
CVE-2024-51744
was published
for
github.com/golang-jwt/jwt/v4
(Go)
Nov 4, 2024
Crash in `tf.strings.substr` due to `CHECK`-fail
Low
CVE-2021-29617
was published
for
tensorflow
(pip)
May 21, 2021
Crash in `tf.transpose` with complex inputs
Low
CVE-2021-29618
was published
for
tensorflow
(pip)
May 21, 2021
Segfault in `tf.raw_ops.SparseCountSparseOutput`
Low
CVE-2021-29619
was published
for
tensorflow
(pip)
May 21, 2021
ProTip!
Advisories are also available from the
GraphQL API