GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,967
Erlang
29
GitHub Actions
16
Go
1,748
Maven
4,978
npm
3,509
NuGet
609
pip
3,075
Pub
10
RubyGems
832
Rust
781
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
34 advisories
Filter by severity
A floating point exception vulnerability was found in sox, in the lsx_aiffstartwrite function at...
Moderate
Unreviewed
CVE-2023-26590
was published
Jul 10, 2023
MultiBit HD before 0.1.2 allows attackers to conduct bit-flipping attacks that insert unspendable...
Moderate
Unreviewed
CVE-2015-6964
was published
Sep 25, 2023
An incorrect comparison vulnerability was identified in GitHub Enterprise Server that allowed...
Moderate
Unreviewed
CVE-2023-23766
was published
Sep 22, 2023
An incorrect comparison vulnerability was identified in GitHub Enterprise Server that allowed...
Moderate
Unreviewed
CVE-2023-23765
was published
Aug 31, 2023
A floating point exception vulnerability was found in sox, in the read_samples function at sox...
Moderate
Unreviewed
CVE-2023-32627
was published
Jul 10, 2023
An incorrect comparison vulnerability was identified in GitHub Enterprise Server that allowed...
Moderate
Unreviewed
CVE-2023-23762
was published
Jul 6, 2023
An issue was discovered in ONOS 2.5.1. There is an incorrect comparison of paths installed by...
Moderate
Unreviewed
CVE-2022-29944
was published
Apr 20, 2023
An issue was discovered in ONOS 2.5.1. There is an incorrect comparison of flow rules installed...
Moderate
Unreviewed
CVE-2021-38364
was published
Apr 20, 2023
xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the...
Moderate
Unreviewed
CVE-2005-2801
was published
May 1, 2022
A potential attacker with access to the Westermo Lynx device would be able to execute...
Moderate
Unreviewed
CVE-2023-45213
was published
Feb 7, 2024
IBM PowerSC 1.3, 2.0, and 2.1 uses Cross-Origin Resource Sharing (CORS) which could allow an...
Moderate
Unreviewed
CVE-2023-50940
was published
Feb 2, 2024
Espeak-ng 1.52-dev was discovered to contain a Floating Point Exception via the function...
Moderate
Unreviewed
CVE-2023-49994
was published
Dec 12, 2023
Dell Wyse ThinOS 2205 contains a Regular Expression Denial of Service Vulnerability in UI. An...
Moderate
Unreviewed
CVE-2022-34402
was published
Oct 11, 2022
A Segmentation fault caused by a floating point exception exists in Gpac through 1.0.1 using...
Moderate
Unreviewed
CVE-2021-40562
was published
Jan 13, 2022
Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804.
Moderate
Unreviewed
CVE-2022-4293
was published
Dec 5, 2022
Dell SupportAssist for Home PCs (version 3.11.2 and prior) contain Overly Permissive Cross-domain...
Moderate
Unreviewed
CVE-2022-34366
was published
Feb 10, 2023
In SoX 14.4.2, there is a floating-point exception in lsx_aiffstartwrite in aiff.c in libsox.a.
Moderate
Unreviewed
CVE-2022-31650
was published
May 26, 2022
The Remote Mount feature can potentially be abused by valid, authenticated users to make...
Moderate
Unreviewed
CVE-2022-34888
was published
Jan 31, 2023
A flaw was found in openshift-ansible. OpenShift Container Platform (OCP) 3.11 is too permissive...
Moderate
Unreviewed
CVE-2020-1741
was published
May 24, 2022
On BIG-IP versions 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, 13.1.x beginning in 13.1.3.6, 12...
Moderate
Unreviewed
CVE-2022-23027
was published
Jan 26, 2022
Google Chrome before 16.0.912.63 does not properly perform regex matching, which allows remote...
Moderate
Unreviewed
CVE-2011-3903
was published
May 13, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.9 before 14...
Moderate
Unreviewed
CVE-2021-39917
was published
Dec 14, 2021
JPEGDEC commit be4843c was discovered to contain a FPE via DecodeJPEG at /src/jpeg.inl.
Moderate
Unreviewed
CVE-2022-34999
was published
Aug 17, 2022
XPDF commit ffaf11c was discovered to contain a floating point exception (FPE) via DCTStream:...
Moderate
Unreviewed
CVE-2022-38230
was published
Aug 17, 2022
fdkaac commit 53fe239 was discovered to contain a floating point exception (FPE) via wav_open at ...
Moderate
Unreviewed
CVE-2022-36148
was published
Aug 17, 2022
ProTip!
Advisories are also available from the
GraphQL API