Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,253 advisories

Loading
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0219. High Unreviewed
CVE-2022-2849 was published Aug 18, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0210. High Unreviewed
CVE-2022-2819 was published Aug 16, 2022
Adobe FrameMaker versions 2019 Update 8 (and earlier) and 2020 Update 4 (and earlier) are... High Unreviewed
CVE-2022-35676 was published Aug 12, 2022
Adobe FrameMaker versions 2019 Update 8 (and earlier) and 2020 Update 4 (and earlier) are... High Unreviewed
CVE-2022-35677 was published Aug 12, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0102. High Unreviewed
CVE-2022-2580 was published Aug 2, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101. High Unreviewed
CVE-2022-2571 was published Aug 2, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0060. High Unreviewed
CVE-2022-2522 was published Jul 26, 2022
DOS / potential heap overwrite in mkv demuxing using zlib decompression. Integer overflow in... High Unreviewed
CVE-2022-1922 was published Jul 20, 2022
DOS / potential heap overwrite in mkv demuxing using lzo decompression. Integer overflow in... High Unreviewed
CVE-2022-1924 was published Jul 20, 2022
DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow... High Unreviewed
CVE-2022-1925 was published Jul 20, 2022
DOS / potential heap overwrite in mkv demuxing using bzip decompression. Integer overflow in... High Unreviewed
CVE-2022-1923 was published Jul 20, 2022
Adobe Character Animator version 4.4.7 (and earlier) and 22.4 (and earlier) are affected by a... High Unreviewed
CVE-2022-34241 was published Jul 16, 2022
Adobe InCopy versions 17.2 (and earlier) and 16.4.1 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-34250 was published Jul 16, 2022
Adobe InDesign versions 17.2.1 (and earlier) and 16.4.1 (and earlier) are affected by a Heap... High Unreviewed
CVE-2022-34245 was published Jul 16, 2022
Adobe InCopy versions 17.2 (and earlier) and 16.4.1 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-34249 was published Jul 16, 2022
Adobe InDesign versions 17.2.1 (and earlier) and 16.4.1 (and earlier) are affected by a Heap... High Unreviewed
CVE-2022-34246 was published Jul 16, 2022
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions), SIMATIC CP 1243-1 ... Critical Unreviewed
CVE-2022-34819 was published Jul 13, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0044. High Unreviewed
CVE-2022-2343 was published Jul 9, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0045. High Unreviewed
CVE-2022-2344 was published Jul 9, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. High Unreviewed
CVE-2022-2284 was published Jul 3, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. High Unreviewed
CVE-2022-2264 was published Jul 2, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Critical Unreviewed
CVE-2022-2207 was published Jun 28, 2022
In multiple CODESYS products, a low privileged remote attacker may craft a request, which may... High Unreviewed
CVE-2022-32137 was published Jun 25, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-2182 was published Jun 24, 2022
NHI’s health insurance web service component has insufficient validation for input string length,... High Unreviewed
CVE-2021-45918 was published Jun 21, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database