Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

85 advisories

Loading
Apache ShardingSphere-Proxy Incomplete Cleanup vulnerability Critical
CVE-2022-45347 was published for org.apache.shardingsphere:shardingsphere-proxy (Maven) Dec 22, 2022
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.6... Low Unreviewed
CVE-2022-28764 was published Nov 15, 2022
Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore... High Unreviewed
CVE-2022-42320 was published Nov 1, 2022
Xenstore: Guests can create orphaned Xenstore nodes By creating multiple nodes inside a... Moderate Unreviewed
CVE-2022-42310 was published Nov 1, 2022
A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a... Moderate Unreviewed
CVE-2022-0171 was published Aug 27, 2022
PowerDNS Recursor up to and including 4.5.9, 4.6.2 and 4.7.1, when protobuf logging is enabled,... Moderate Unreviewed
CVE-2022-37428 was published Aug 24, 2022
Incomplete cleanup in a firmware subsystem for Intel(R) SPS before versions SPS_E3_04.08.04.330.0... Moderate Unreviewed
CVE-2022-26074 was published Aug 19, 2022
A lack of cascading deletes in GitLab CE/EE affecting all versions starting from 13.0 before 15.0... Low Unreviewed
CVE-2022-2307 was published Aug 6, 2022
Incomplete cleanup in specific special register read operations for some Intel(R) Processors may... Moderate Unreviewed
CVE-2022-21127 was published Jun 16, 2022
Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an... Moderate Unreviewed
CVE-2022-21125 was published Jun 16, 2022
Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an... Moderate Unreviewed
CVE-2022-21123 was published Jun 16, 2022
The Sentinel LDK Run-Time Environment installer (Versions 7.6 and prior) adds a firewall rule... Critical Unreviewed
CVE-2021-32928 was published May 24, 2022
Beckhoff’s TwinCAT RT network driver for Intel 8254x and 8255x is providing EtherCAT... Moderate Unreviewed
CVE-2020-12494 was published May 24, 2022
A component of the HarmonyOS has a Incomplete Cleanup vulnerability. Local attackers may exploit... Moderate Unreviewed
CVE-2021-22450 was published May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** In OSS-RC systems of the release 18B and older during data... Moderate Unreviewed
CVE-2021-32571 was published May 24, 2022
The BulletProof Security WordPress plugin is vulnerable to sensitive information disclosure due... Moderate Unreviewed
CVE-2021-39327 was published May 24, 2022
Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially... High Unreviewed
CVE-2020-24489 was published May 24, 2022
An issue was discovered in the FUSE filesystem implementation in the Linux kernel before 5.10.6,... Moderate Unreviewed
CVE-2020-36322 was published May 24, 2022
Incomplete cleanup in some Intel(R) PROSet/Wireless WiFi and Killer (TM) drivers before version... Moderate Unreviewed
CVE-2020-24458 was published May 24, 2022
There is an unsafe incomplete reset of PATH in OpenDoas 6.6 through 6.8 when changing the user... High Unreviewed
CVE-2019-25016 was published May 24, 2022
An incomplete-cleanup vulnerability in the Office rendering engine of Gotenberg through 6.2.1... Critical Unreviewed
CVE-2020-13451 was published May 24, 2022
In stopZygoteLocked of AppZygote.java, there is an insufficient cleanup. This could lead to local... Moderate Unreviewed
CVE-2020-0258 was published May 24, 2022
Incomplete cleanup from specific special register read operations in some Intel(R) Processors may... Low Unreviewed
CVE-2020-0543 was published May 24, 2022
"Clear History and Website Data" did not clear the history. The issue was addressed with improved... Moderate Unreviewed
CVE-2019-8768 was published May 24, 2022
An issue existed in the pausing of FaceTime video. The issue was resolved with improved logic.... Moderate Unreviewed
CVE-2019-8550 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API