Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,948
Erlang
29
GitHub Actions
16
Go
1,739
Maven
4,967
npm
3,504
NuGet
607
pip
3,064
Pub
10
RubyGems
832
Rust
779
Swift
34
Unreviewed advisories
All unreviewed
5,000+

87 advisories

Improper Validation of Integrity Check Value in TensorFlow High
GHSA-43q8-3fv7-pr5x was published for tensorflow (pip) Feb 9, 2022
Execution Control List (ECL) Is Insecure in Singularity High
CVE-2020-13845 was published for github.com/sylabs/singularity (Go) Dec 20, 2021
tri-adam
A vulnerability was found in the Linux kernel's block_invalidatepage in fs/buffer.c in the... Moderate Unreviewed
CVE-2021-4148 was published Mar 24, 2022
The DFX module has a vulnerability of improper validation of integrity check values.Successful... High Unreviewed
CVE-2022-22253 was published Apr 12, 2022
Some Xiaomi models have a vulnerability in a certain application. The vulnerability is caused by... High Unreviewed
CVE-2020-14120 was published Apr 22, 2022
Improper Validation of Integrity Check Value in Bouncy Castle Moderate
CVE-2018-5382 was published for org.bouncycastle:bcprov-jdk15on (Maven) May 13, 2022
Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3... High Unreviewed
CVE-2022-39844 was published Sep 10, 2022
Improper validation of integrity check vulnerability in Samsung Kies prior to version 2.6.4.22074... High Unreviewed
CVE-2022-39845 was published Sep 10, 2022
This issue was addressed with improved checks. This issue is fixed in Security Update 2021-004... Moderate Unreviewed
CVE-2021-1883 was published May 24, 2022
In WIFI Firmware, there is a possible system crash due to a missing count check. This could lead... High Unreviewed
CVE-2022-21757 was published Jun 7, 2022
A vulnerability has been identified in SCALANCE XM408-4C (All versions < V6.5), SCALANCE XM408-4C... High Unreviewed
CVE-2021-37182 was published Jun 15, 2022
In ILIAS through 7.10, lack of verification when changing an email address (on the Profile Page)... Critical Unreviewed
CVE-2022-31266 was published Jun 30, 2022
Improper validation of integrity check vulnerability in Samsung USB Driver Windows Installer for... Moderate Unreviewed
CVE-2022-33711 was published Jul 13, 2022
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2... Moderate Unreviewed
CVE-2022-46402 was published Dec 20, 2022
Honeywell Experion PKS Safety Manager 5.02 has Insufficient Verification of Data Authenticity.... Moderate Unreviewed
CVE-2022-30316 was published Jul 29, 2022
An issue was discovered in Zoho ManageEngine AssetExplorer 6.5. During an upgrade of the Windows... Moderate Unreviewed
CVE-2020-8838 was published May 24, 2022
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the service host... Moderate Unreviewed
CVE-2020-5964 was published May 24, 2022
Nimbus JOSE+JWT vulnerable to padding oracle attack Low
CVE-2017-12973 was published for com.nimbusds:nimbus-jose-jwt (Maven) May 13, 2022
In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash.... High Unreviewed
CVE-2020-25862 was published May 24, 2022
Improper validation of integrity check value vulnerability in Aterm SA3500G firmware versions... Moderate Unreviewed
CVE-2020-5637 was published May 24, 2022
An issue was discovered on D-Link DSR-250 3.17 devices. Insufficient validation of configuration... High Unreviewed
CVE-2020-25758 was published May 24, 2022
The update functionality of the Discover Media infotainment system in Volkswagen Polo 2019... High Unreviewed
CVE-2020-28656 was published May 24, 2022
There is an insufficient integrity check vulnerability in Huawei Sound X Product. The system does... Moderate Unreviewed
CVE-2020-9118 was published May 24, 2022
Improper validation of integrity check value vulnerability in NEC Aterm WF1200CR firmware Ver1.3... High Unreviewed
CVE-2021-20709 was published May 24, 2022
Proofpoint Enterprise Protection (PPS/PoD) before 8.17.0 contains a vulnerability that could... Moderate Unreviewed
CVE-2020-14009 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API