Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,253 advisories

Loading
Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by a... Critical Unreviewed
CVE-2022-35711 was published Oct 15, 2022
Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by a... Critical Unreviewed
CVE-2022-35712 was published Oct 15, 2022
A vulnerability has been identified in Solid Edge (All Versions < SE2022MP9). The affected... High Unreviewed
CVE-2022-37864 was published Oct 11, 2022
There exists an unchecked length field in UBoot. The U-Boot DFU implementation does not bound the... High Unreviewed
CVE-2022-2347 was published Sep 25, 2022
A heap out-of-bounds memory write exists in FFMPEG since version 5.1. The size calculation in ... High Unreviewed
CVE-2022-2566 was published Sep 25, 2022
An integer overflow in WhatsApp could result in remote code execution in an established video call. Critical Unreviewed
CVE-2022-36934 was published Sep 23, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-35706 was published Sep 20, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-35708 was published Sep 20, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483. High Unreviewed
CVE-2022-3234 was published Sep 18, 2022
Adobe Animate version 21.0.11 (and earlier) and 22.0.7 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38411 was published Sep 17, 2022
Adobe Photoshop versions 22.5.8 (and earlier) and 23.4.2 (and earlier) are affected by a Heap... High Unreviewed
CVE-2022-38432 was published Sep 17, 2022
Adobe Photoshop versions 22.5.8 (and earlier) and 23.4.2 (and earlier) are affected by a Heap... High Unreviewed
CVE-2022-38433 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38414 was published Sep 17, 2022
Adobe InCopy version 17.3 (and earlier) and 16.4.2 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38405 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38413 was published Sep 17, 2022
Adobe InCopy version 17.3 (and earlier) and 16.4.2 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38401 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38415 was published Sep 17, 2022
Adobe InCopy version 17.3 (and earlier) and 16.4.2 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38404 was published Sep 17, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40661 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40660 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40655 was published Sep 16, 2022
OpenHarmony-v3.1.2 and prior versions have a heap overflow vulnerability. Local attackers can... Low Unreviewed
CVE-2022-38701 was published Sep 10, 2022
A heap-based buffer overflow flaw was found in the Fribidi package and affects the... Moderate Unreviewed
CVE-2022-25309 was published Sep 7, 2022
A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group... High Unreviewed
CVE-2022-26061 was published Aug 23, 2022
A heap-based buffer over write vulnerability was found in GhostScript's lp8000_print_page()... High Unreviewed
CVE-2020-27792 was published Aug 20, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database