swift
Security Advisories in swift
Moderate
1 day ago
Sparkle's AppInstaller post-stage-1 XPC listener accepts unvalidated connections, allowing spoofed appcast item data injection
swift
github.com/sparkle-project/Sparkle
Moderate
1 day ago
Sparkle: Binary delta apply intermediate-symlink traversal in malicious .delta
swift
github.com/sparkle-project/Sparkle
Low
24 days ago
container: pf Rule Injection via Domain Name Argument in `container system dns create --localhost` Command
swift
github.com/apple/container
Moderate
about 2 months ago
CocoaMQTT: Denial of Service via Reachable Assertion in `PUBLISH` Packet Parsing
swift
CocoaMQTT
High
about 2 months ago
Swift Crypto: X-Wing HPKE Decapsulation Accepts Malformed Ciphertext Length
swift
swift-crypto
Moderate
3 months ago
LeafKit's HTML escaping may be skipped for Collection values, enabling XSS
swift
github.com/vapor/leaf-kit
Moderate
3 months ago
Leaf-kit html escaping does not work on characters that are part of extended grapheme cluster
swift
github.com/vapor/leaf-kit
Low
4 months ago
Container and Containerization archive extraction does not guard against escapes from extraction base directory.
swift
github.com/apple/container, github.com/apple/containerization
Moderate
4 months ago
Swift W3C TraceContext vulnerable to a malformed HTTP header causing a crash
swift
github.com/swift-otel/swift-otel, github.com/swift-otel/swift-w3c-trace-context
High
5 months ago
jose-swift has JWT Signature Verification Bypass via None Algorithm
swift
github.com/beatt83/jose-swift
Low
5 months ago
AWS SDK for Swift adopted defense in depth enhancement for region parameter value
swift
github.com/awslabs/aws-sdk-swift
Moderate
10 months ago
swift-nio-http2 affected by HTTP/2 MadeYouReset vulnerability
swift
github.com/apple/swift-nio-http2
Low
over 1 year ago
CVE-2025-0343: Swift ASN.1 can crash when parsing maliciously formed BER/DER
swift
github.com/apple/swift-asn1
Moderate
over 1 year ago
wasm3 uncontrolled memory allocation vulnerability
cargo, pypi, swift
wasm3, pywasm3, github.com/shareup/wasm-interpreter-apple
Moderate
about 2 years ago
Un-sanitized metric name or labels can be used to take over exported metrics
swift
github.com/swift-server/swift-prometheus
Moderate
over 2 years ago
Vapor contains an integer overflow in URI leading to potential host spoofing
swift
github.com/vapor/vapor
Moderate
over 2 years ago
Vapor's incorrect request error handling triggers server crash
swift
github.com/vapor/vapor
High
almost 3 years ago
SwiftTerm Code Injection vulnerability
swift
github.com/migueldeicaza/SwiftTerm
High
almost 3 years ago
Denial of service via HTTP/2 HEADERS frames padding
swift
github.com/apple/swift-nio-http2
Moderate
almost 3 years ago
LeafKit allows XSS with untrusted user input
swift
github.com/vapor/leaf-kit
High
almost 3 years ago
Incomplete Internal State Distinction in GRPCWebToHTTP2ServerCodec
swift
github.com/grpc/grpc-swift
High
almost 3 years ago
Uncontrolled Resource Consumption in LengthPrefixedMessageReader
swift
github.com/grpc/grpc-swift
Moderate
almost 3 years ago
Untrusted data fed into `Data.init(base32Encoded:)` can result in exposing server memory and/or crash
swift
github.com/vapor/vapor
Moderate
almost 3 years ago
Vapor's Metrics integration could cause a system drain
swift
github.com/vapor/vapor
Moderate
almost 3 years ago
Arbitrary file read using percent-encoded relative paths in FileMiddleware
swift
github.com/vapor/vapor
High
almost 3 years ago
Vapor vulnerable to denial of service in HTTP Range Request of FileMiddleware
swift
github.com/vapor/vapor
High
almost 3 years ago
Vapor vulnerable to denial of service in URLEncodedFormDecoder
swift
github.com/vapor/vapor
High
almost 3 years ago
Swift-corelibs-foundation denial of service in JSON decoding with JSONDecoder
swift
github.com/apple/swift-corelibs-foundation
High
almost 3 years ago
SwiftNIO Extras vulnerable to improper detection of complete HTTP body decompression
swift
github.com/apple/swift-nio-extras
Moderate
almost 3 years ago
SwiftNIO vulnerable to Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting')
swift
github.com/apple/swift-nio
High
almost 3 years ago
Async HTTP Client has CRLF Injection vulnerability in HTTP request headers
swift
github.com/swift-server/async-http-client
Moderate
about 3 years ago
Uncontrolled Recursion in HTTP2ToRawGRPCServerCodec
swift
github.com/grpc/grpc-swift
High
about 3 years ago
swift-nio-http2 vulnerable to denial of service via ALTSVC or ORIGIN frames
swift
github.com/apple/swift-nio-http2
High
about 3 years ago
swift-nio-http2 vulnerable to denial of service via invalid HTTP/2 HEADERS frame length
swift
github.com/apple/swift-nio-http2
Critical
about 3 years ago
SwiftNIO vulnerable to HTTP request smuggling using malformed Transfer-Encoding header
swift
github.com/apple/swift-nio
High
about 3 years ago
swift-nio-http2 vulnerable to denial of service via mishandled HPACK variable length integer encoding
swift
github.com/apple/swift-nio-http2
Low
about 3 years ago
PostgresNIO processes unencrypted bytes from man-in-the-middle
swift
github.com/vapor/postgres-nio
Critical
about 4 years ago
SwiftNIO SSL arbitrary code execution vulnerability
swift
github.com/apple/swift-nio-ssl
Filter by Severity
Filter by Package
github.com/vapor/vapor
7
github.com/apple/swift-nio-http2
5
github.com/grpc/grpc-swift
4
github.com/vapor/leaf-kit
3
github.com/sparkle-project/Sparkle
3
github.com/apple/swift-nio
2
github.com/apple/container
2
github.com/apple/containerization
1
github.com/facebook/zstd
1
github.com/swift-server/async-http-client
1
github.com/apple/swift-corelibs-foundation
1
github.com/swift-otel/swift-otel
1
github.com/apple/swift-nio-ssl
1
github.com/weichsel/ZIPFoundation
1
github.com/beatt83/jose-swift
1
github.com/awslabs/aws-sdk-swift
1
swift-crypto
1
pywasm3
1
github.com/migueldeicaza/SwiftTerm
1
github.com/vapor/postgres-nio
1
github.com/marmelroy/Zip
1
github.com/apple/swift-asn1
1
github.com/swift-server/swift-prometheus
1
github.com/apple/swift-nio-extras
1
CocoaMQTT
1
wasm3
1
github.com/ibireme/yyjson
1
github.com/shareup/wasm-interpreter-apple
1
github.com/swift-otel/swift-w3c-trace-context
1
Filter by Repository
https://github.com/vapor/vapor
7
https://github.com/apple/swift-nio-http2
5
https://github.com/grpc/grpc-swift
4
https://github.com/apple/swift-nio
2
https://github.com/apple/swift-asn1
1
https://github.com/apple/swift-corelibs-foundation
1
https://github.com/apple/swift-nio-extras
1
https://github.com/apple/swift-nio-ssl
1
https://github.com/facebook/zstd
1
https://github.com/ibireme/yyjson
1
https://github.com/marmelroy/Zip
1
https://github.com/migueldeicaza/SwiftTerm
1
https://github.com/sparkle-project/Sparkle
1
https://github.com/swift-server/async-http-client
1
https://github.com/swift-server/swift-prometheus
1
https://github.com/vapor/leaf-kit
1
https://github.com/vapor/postgres-nio
1
https://github.com/wasm3/wasm3
1
https://github.com/weichsel/ZIPFoundation
1