Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-pjpj-f6r8-56rm
  • NuGet/Microsoft.ChakraCore
High severity vulnerability that affects Microsoft.ChakraCore
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2022-08-15T09:15:32.225787Z Fix available
GHSA-6jf5-rmhv-38cw
  • NuGet/Microsoft.ChakraCore
High severity vulnerability that affects Microsoft.ChakraCore
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2022-08-15T09:12:38.918814Z Fix available
GHSA-w89r-qch4-8jv5
  • NuGet/Microsoft.ChakraCore
Out-of-bounds write
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2022-08-15T09:12:27.805563Z Fix available
GHSA-h595-8pw6-5q6v
  • NuGet/DotNetNuke.Core
Inadequate Encryption Strength in DotNetNuke
  • 9.2.0.366
  • 9.2.1.533
2022-08-15T09:12:27.362850Z Fix available
GHSA-qwwr-qc2p-6283
  • NuGet/libpng
Out-of-bounds write in libpng
  • 1.5.10.11
  • 1.5.10.13
  • 1.5.10.9
  • 1.6.18.1
  • 1.6.19.1
  • 1.6.20.1
  • 1.6.23.1
  • ...
2022-08-15T09:12:24.039992Z Fix available
GHSA-mx3q-j2g2-5qxq
  • NuGet/Nancy
  • NuGet/Nancy
Deserialization of Untrusted Data in NancyFX Nancy
  • 0.10.0
  • 0.11.0
  • 0.12.0
  • 0.12.1
  • 0.13.0
  • 0.14.0
  • 0.14.1
  • ...
2022-08-15T09:12:17.422360Z Fix available
GHSA-r8pr-83cc-ccv7
  • NuGet/Umbraco.Cms.Core
Umbraco Persistent Password Reset Poison
  • 9.0.0
  • 9.0.0-rc001
  • 9.0.0-rc002
  • 9.0.0-rc003
  • 9.0.0-rc004
  • 9.0.1
  • 9.1.0
  • ...
2022-08-15T09:12:08.602042Z Fix available
GHSA-x7fx-mcc9-27j7
  • NuGet/CefSharp.Common
  • NuGet/CefSharp.Wpf
  • NuGet/CefSharp.WinForms
  • NuGet/CefSharp.Wpf.HwndHost
Inappropriate implementation in V8 in CefSharp
  • 31.0.0-pre1
  • 33.0.0
  • 33.0.2
  • 33.1.0-pre01
  • 37.0.0
  • 37.0.0-pre01
  • 37.0.0-pre02
  • ...
2022-08-15T09:12:01.162362Z Fix available
GHSA-72p8-v4hg-v45p
  • NuGet/SSH.NET
Weak private key generation in SSH.NET
  • 2011.12.7
  • 2011.7.29
  • 2011.9.28
  • 2012.12.3
  • 2012.20.12
  • 2012.21.12
  • 2012.3.9
  • ...
2022-08-15T09:11:49.748662Z Fix available
GHSA-53r4-h27g-rg3x
  • NuGet/Microsoft.ChakraCore
Out-of-bounds write
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2022-08-15T09:11:39.974917Z Fix available
GHSA-r7pq-3x6p-7jcm
  • NuGet/OPCFoundation.NetStandard.Opc.Ua
Memory Allocation with Excessive Size Value in OPCFoundation.NetStandard.Opc.Ua
  • 0.4.0
  • 0.4.1
  • 0.4.3
  • 0.4.4
  • 0.4.5
  • 1.3.348
  • 1.3.349
  • ...
2022-08-15T09:11:38.854401Z Fix available
GHSA-vv6j-ww6x-54gx
  • NuGet/CefSharp.Common
  • NuGet/CefSharp.OffScreen
  • NuGet/CefSharp.WinForms
  • NuGet/CefSharp.Wpf
  • NuGet/CefSharp.Wpf.HwndHost
  • NuGet/CefSharp.Common.NETCore
  • NuGet/CefSharp.OffScreen.NETCore
  • NuGet/CefSharp.WinForms.NETCore
  • NuGet/CefSharp.Wpf.NETCore
Use after free in Animation
  • 31.0.0-pre1
  • 33.0.0
  • 33.0.2
  • 33.1.0-pre01
  • 37.0.0
  • 37.0.0-pre01
  • 37.0.0-pre02
  • ...
2022-08-15T09:11:03.105344Z Fix available
GHSA-p9wx-v264-q34p
  • NuGet/System.Private.ServiceModel
  • NuGet/System.Private.ServiceModel
  • NuGet/System.Private.ServiceModel
  • NuGet/System.Private.ServiceModel
  • NuGet/System.ServiceModel.Duplex
  • NuGet/System.ServiceModel.Duplex
  • NuGet/System.ServiceModel.Duplex
  • NuGet/System.ServiceModel.Duplex
  • NuGet/System.ServiceModel.Http
  • NuGet/System.ServiceModel.Http
  • NuGet/System.ServiceModel.Http
  • NuGet/System.ServiceModel.Http
  • NuGet/System.ServiceModel.NetTcp
  • NuGet/System.ServiceModel.NetTcp
  • NuGet/System.ServiceModel.NetTcp
  • NuGet/System.ServiceModel.NetTcp
  • NuGet/System.ServiceModel.Primitives
  • NuGet/System.ServiceModel.Primitives
  • NuGet/System.ServiceModel.Primitives
  • NuGet/System.ServiceModel.Primitives
  • NuGet/System.ServiceModel.Security
  • NuGet/System.ServiceModel.Security
  • NuGet/System.ServiceModel.Security
  • NuGet/System.ServiceModel.Security
Improper Certificate Validation in Microsoft .NET Framework components
  • 4.0.0
  • 4.0.1-beta-23225
  • 4.0.1-beta-23409
  • 4.1.0
  • 4.1.0-beta-23516
  • 4.1.0-rc2-24027
  • 4.1.1
  • ...
2022-08-15T09:10:42.342884Z Fix available
GHSA-5633-f33j-c6f7
  • NuGet/Microsoft.NETCore.App
Tampering vulnerability in .NET Core
  • 2.1.0
  • 2.1.1
  • 2.1.2
  • 2.1.3
  • 2.1.4
  • 2.1.5
  • 2.1.6
2022-08-15T09:10:37.072033Z Fix available
GHSA-7q36-4xx7-xcxf
  • NuGet/MessagePack
  • NuGet/MessagePack
  • NuGet/MessagePack.ImmutableCollection
  • NuGet/MessagePack.ImmutableCollection
  • NuGet/MessagePack.ReactiveProperty
  • NuGet/MessagePack.ReactiveProperty
  • NuGet/MessagePack.UnityShims
  • NuGet/MessagePack.UnityShims
Untrusted data can lead to DoS attack due to hash collisions and stack overflow in MessagePack
  • 0.1.0-beta
  • 0.2.0-beta
  • 0.2.1-beta
  • 0.2.2-beta
  • 0.2.3-beta
  • 0.3.0-beta
  • 0.4.0
  • ...
2022-08-15T09:10:09.535174Z Fix available
GHSA-prrf-397v-83xh
  • NuGet/Microsoft.AspNetCore.App
  • NuGet/Microsoft.AspNetCore.App
  • NuGet/Microsoft.AspNetCore.All
  • NuGet/Microsoft.AspNetCore.All
  • NuGet/Microsoft.AspNetCore.Server.IIS
  • NuGet/Microsoft.AspNetCore.Server.HttpSys
  • NuGet/Microsoft.AspNetCore.Server.HttpSys
Open redirect in ASP.NET Core
  • 2.2.0
  • 2.2.1
  • 2.2.2
  • 2.2.3
  • 2.2.4
  • 2.2.5
  • 2.1.0
  • ...
2022-08-15T09:10:01.740128Z Fix available