Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,263
NuGet
760
pip
4,058
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,307 advisories

Loading
Adobe Photoshop versions 22.5.8 (and earlier) and 23.4.2 (and earlier) are affected by a Heap... High Unreviewed
CVE-2022-38433 was published Sep 17, 2022
Adobe Animate version 21.0.11 (and earlier) and 22.0.7 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38411 was published Sep 17, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483. High Unreviewed
CVE-2022-3234 was published Sep 18, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-35706 was published Sep 20, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-35708 was published Sep 20, 2022
An integer overflow in WhatsApp could result in remote code execution in an established video call. Critical Unreviewed
CVE-2022-36934 was published Sep 23, 2022
A heap out-of-bounds memory write exists in FFMPEG since version 5.1. The size calculation in ... High Unreviewed
CVE-2022-2566 was published Sep 25, 2022
There exists an unchecked length field in UBoot. The U-Boot DFU implementation does not bound the... High Unreviewed
CVE-2022-2347 was published Sep 25, 2022
A vulnerability has been identified in Solid Edge (All Versions < SE2022MP9). The affected... High Unreviewed
CVE-2022-37864 was published Oct 11, 2022
Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by a... Critical Unreviewed
CVE-2022-35711 was published Oct 15, 2022
Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by a... Critical Unreviewed
CVE-2022-35712 was published Oct 15, 2022
A vulnerability has been identified in JT2Go (All versions < V14.1.0.4), Teamcenter Visualization... High Unreviewed
CVE-2022-39136 was published Nov 8, 2022
A vulnerability in the generic routing encapsulation (GRE) tunnel decapsulation feature of Cisco... High Unreviewed
CVE-2022-20946 was published Nov 16, 2022
LIEF heap buffer overflow in the LIEF::MachO::BinaryParser::parse_dyldinfo_generic_bind High
CVE-2022-43171 was published for lief (pip) Nov 18, 2022
The target's backtrace indicates that libc has detected a heap error or that the target was... High Unreviewed
CVE-2022-4141 was published Nov 25, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0765. Critical Unreviewed
CVE-2022-3520 was published Dec 2, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0742. Critical Unreviewed
CVE-2022-3491 was published Dec 3, 2022
GE CIMPICITY versions 2022 and prior is vulnerable to a heap-based buffer overflow, which could... High Unreviewed
CVE-2022-2948 was published Dec 8, 2022
Affected builds of Trend Micro Apex One and Apex One as a Service contain a monitor engine... High Unreviewed
CVE-2022-44654 was published Dec 12, 2022
Binbloom 2.0 was discovered to contain a heap buffer overflow via the read_pointer function at ... High Unreviewed
CVE-2022-44910 was published Dec 14, 2022
A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead... High Unreviewed
CVE-2022-2601 was published Dec 14, 2022
A vulnerability was found in Axiomatic Bento4. It has been rated as critical. Affected by this... High Unreviewed
CVE-2022-4584 was published Dec 17, 2022
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of... High Unreviewed
CVE-2022-43599 was published Dec 23, 2022
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of... High Unreviewed
CVE-2022-43600 was published Dec 23, 2022
A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO... Critical Unreviewed
CVE-2022-41838 was published Dec 23, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database