Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-5crp-9r3c-p9vr
  • NuGet/Newtonsoft.Json
Improper Handling of Exceptional Conditions in Newtonsoft.Json
  • 10.0.1
  • 10.0.1-beta1
  • 10.0.2
  • 10.0.3
  • 11.0.1
  • 11.0.1-beta1
  • 11.0.1-beta2
  • ...
2022-06-22T15:33:27.227789Z Fix available
GHSA-jwvw-v7c5-m82h
  • NuGet/Google.Protobuf
  • Maven/com.google.protobuf:protobuf-parent
  • Go/github.com/protocolbuffers/protobuf
  • Packagist/google/protobuf
  • PyPI/protobuf
protobuf susceptible to buffer overflow
  • 0.0.1-test1
  • 3.0.0
  • 3.0.0-alpha4
  • 3.0.0-beta2
  • 3.0.0-beta3
  • 3.0.0-beta4
  • 3.1.0
  • ...
2022-06-17T22:25:16.563523Z Fix available
GHSA-5q2v-6j86-5h9v
  • NuGet/OPCFoundation.NetStandard.Opc.Ua
Security Update for the OPC UA .NET Standard Stack
  • 0.4.0
  • 0.4.1
  • 0.4.3
  • 0.4.4
  • 0.4.5
  • 1.3.348
  • 1.3.349
  • ...
2022-06-17T22:18:05.058946Z Fix available
GHSA-fvxf-r9fw-49pc
  • NuGet/OPCFoundation.NetStandard.Opc.Ua
Incorrect Implementation of Authentication Algorithm in OPCFoundation.NetStandard.Opc.Ua
  • 0.4.0
  • 0.4.1
  • 0.4.3
  • 0.4.4
  • 0.4.5
  • 1.3.348
  • 1.3.349
  • ...
2022-06-17T22:17:54.239911Z Fix available
GHSA-r7pq-3x6p-7jcm
  • NuGet/OPCFoundation.NetStandard.Opc.Ua
Memory Allocation with Excessive Size Value in OPCFoundation.NetStandard.Opc.Ua
  • 0.4.0
  • 0.4.1
  • 0.4.3
  • 0.4.4
  • 0.4.5
  • 1.3.348
  • 1.3.349
  • ...
2022-06-17T22:17:31.800405Z Fix available
GHSA-6fp8-cxc9-4fr9
  • NuGet/OPCFoundation.NetStandard.Opc.Ua
Uncontrolled Resource Consumption in OPCFoundation.NetStandard.Opc.Ua
  • 0.4.0
  • 0.4.1
  • 0.4.3
  • 0.4.4
  • 0.4.5
  • 1.3.348
  • 1.3.349
  • ...
2022-06-17T22:17:20.420636Z Fix available
GHSA-vhfw-v69p-crcw
  • NuGet/OPCFoundation.NetStandard.Opc.Ua
Uncontrolled Resource Consumption in OPCFoundation.NetStandard.Opc.Ua
  • 0.4.0
  • 0.4.1
  • 0.4.3
  • 0.4.4
  • 0.4.5
  • 1.3.348
  • 1.3.349
  • ...
2022-06-17T22:17:18.036556Z Fix available
GHSA-vcfc-9wcp-j623
  • NuGet/ServiceStack
Cross site scripting attack in ServiceStack Framework
  • 4.5.14
  • 5.0.0
  • 5.0.2
  • 5.1.0
2022-06-17T21:48:22.506424Z Fix available
GHSA-72p8-v4hg-v45p
  • NuGet/SSH.NET
Weak private key generation in SSH.NET
  • 2011.12.7
  • 2011.7.29
  • 2011.9.28
  • 2012.12.3
  • 2012.20.12
  • 2012.21.12
  • 2012.3.9
  • ...
2022-06-15T19:40:55.871621Z Fix available
GHSA-3885-8gqc-3wpf
  • NuGet/NuGet.Commands
  • NuGet/NuGet.CommandLine
  • NuGet/NuGet.CommandLine.XPlat
  • NuGet/NuGet.Commands
  • NuGet/NuGet.Commands
  • NuGet/NuGet.Commands
  • NuGet/NuGet.Commands
  • NuGet/NuGet.Commands
  • NuGet/NuGet.Commands
  • NuGet/NuGet.CommandLine
  • NuGet/NuGet.CommandLine
  • NuGet/NuGet.CommandLine
  • NuGet/NuGet.CommandLine
  • NuGet/NuGet.CommandLine
  • NuGet/NuGet.CommandLine
  • NuGet/NuGet.CommandLine.XPlat
  • NuGet/NuGet.CommandLine.XPlat
  • NuGet/NuGet.CommandLine.XPlat
  • NuGet/NuGet.CommandLine.XPlat
  • NuGet/NuGet.CommandLine.XPlat
  • NuGet/NuGet.CommandLine.XPlat
Potential leak of NuGet.org API key
  • 3.5.0
  • 4.0.0
  • 4.0.0-rc-2048
  • 4.0.0-rc2
  • 4.0.0-rc3
  • 4.0.0-rtm-2265
  • 4.0.0-rtm-2283
  • ...
2022-06-14T22:17:08.508580Z Fix available
GHSA-4qf6-vpj8-p4r6
  • NuGet/SSCMS
Cross site scripting in SSCMS
  • 6.15.51
2022-06-14T20:06:07Z No fix available
GHSA-jc8g-xhw5-6x46
  • NuGet/Microsoft.NETCore.UniversalWindowsPlatform
  • NuGet/Microsoft.NETCore.UniversalWindowsPlatform
  • NuGet/Microsoft.NETCore.UniversalWindowsPlatform
  • NuGet/Microsoft.NETCore.UniversalWindowsPlatform
  • NuGet/Microsoft.NETCore.UniversalWindowsPlatform
Moderate severity vulnerability that affects Microsoft.NETCore.UniversalWindowsPlatform and Microsoft.NETCore.UniversalWindowsPlatform
  • 5.2.0
  • 5.2.1
  • 5.2.2
  • 5.2.3
  • 5.3.0
  • 5.3.1
  • 5.3.2
  • ...
2022-06-10T02:20:35.380398Z Fix available
GHSA-6xh7-4v2w-36q6
  • NuGet/Microsoft.AspNetCore.Mvc
  • NuGet/Microsoft.AspNetCore.Mvc
  • NuGet/Microsoft.AspNetCore.Mvc.Core
  • NuGet/Microsoft.AspNetCore.Mvc.Core
  • NuGet/System.Net.Http
  • NuGet/System.Net.Http
  • NuGet/System.Text.Encodings.Web
  • NuGet/System.Text.Encodings.Web
  • NuGet/System.Net.Http.WinHttpHandler
  • NuGet/System.Net.Http.WinHttpHandler
  • NuGet/System.Net.Security
  • NuGet/System.Net.Security
  • NuGet/System.Net.WebSockets.Client
  • NuGet/System.Net.WebSockets.Client
  • NuGet/Microsoft.AspNetCore.Mvc.Abstractions
  • NuGet/Microsoft.AspNetCore.Mvc.Abstractions
  • NuGet/Microsoft.AspNetCore.Mvc.ApiExplorer
  • NuGet/Microsoft.AspNetCore.Mvc.ApiExplorer
  • NuGet/Microsoft.AspNetCore.Mvc.Cors
  • NuGet/Microsoft.AspNetCore.Mvc.Cors
  • NuGet/Microsoft.AspNetCore.Mvc.DataAnnotations
  • NuGet/Microsoft.AspNetCore.Mvc.DataAnnotations
  • NuGet/Microsoft.AspNetCore.Mvc.Formatters.Json
  • NuGet/Microsoft.AspNetCore.Mvc.Formatters.Json
  • NuGet/Microsoft.AspNetCore.Mvc.Formatters.Xml
  • NuGet/Microsoft.AspNetCore.Mvc.Formatters.Xml
  • NuGet/Microsoft.AspNetCore.Mvc.Localization
  • NuGet/Microsoft.AspNetCore.Mvc.Localization
  • NuGet/Microsoft.AspNetCore.Mvc.Razor.Host
  • NuGet/Microsoft.AspNetCore.Mvc.Razor.Host
  • NuGet/Microsoft.AspNetCore.Mvc.Razor
  • NuGet/Microsoft.AspNetCore.Mvc.Razor
  • NuGet/Microsoft.AspNetCore.Mvc.TagHelpers
  • NuGet/Microsoft.AspNetCore.Mvc.TagHelpers
  • NuGet/Microsoft.AspNetCore.Mvc.ViewFeatures
  • NuGet/Microsoft.AspNetCore.Mvc.ViewFeatures
  • NuGet/Microsoft.AspNetCore.Mvc.WebApiCompatShim
  • NuGet/Microsoft.AspNetCore.Mvc.WebApiCompatShim
ASP.NET Core fails to properly validate web requests
  • 1.0.0
  • 1.0.1
  • 1.0.2
  • 1.0.3
  • 1.1.0
  • 1.1.1
  • 1.1.2
  • ...
2022-06-10T02:17:51.623993Z Fix available
GHSA-37pf-w9ff-gqvm
  • NuGet/Microsoft.ChakraCore
Out-of-bounds write
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2022-06-10T02:17:40.226268Z Fix available
GHSA-7423-5qfm-g648
  • NuGet/Microsoft.ChakraCore
Out-of-bounds write
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2022-06-10T02:17:38.201650Z Fix available
GHSA-9wx7-jrvc-28mm
  • PyPI/starkbank-ecdsa
  • Maven/com.starkbank:ecdsa-java
  • NuGet/starkbank-ecdsa
  • npm/starkbank-ecdsa
Signature verification vulnerability in Stark Bank ecdsa libraries
  • 0.1
  • 0.1.1
  • 0.1.2
  • 0.1.3
  • 0.1.4
  • 0.1.5
  • 0.1.6
  • ...
2022-06-10T02:17:35.406100Z Fix available