Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,819 advisories

Loading
An exploitable Denial of Service vulnerability exists in the use of a return value in the... High Unreviewed
CVE-2017-2861 was published May 13, 2022
An exploitable denial-of-service vulnerability exists in the traversal of lists functionality of... High Unreviewed
CVE-2017-2858 was published May 13, 2022
An exploitable denial-of-service vulnerability exists in the lookup entry functionality of... High Unreviewed
CVE-2017-2860 was published May 13, 2022
An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing... High Unreviewed
CVE-2017-2895 was published May 13, 2022
An exploitable arbitrary heap-overwrite vulnerability exists within Iceni Argus. When it attempts... High Unreviewed
CVE-2016-8388 was published May 13, 2022
An exploitable incorrect return value vulnerability exists in the mp_check function of Tarantool... High Unreviewed
CVE-2016-9036 was published May 13, 2022
An exploitable out-of-bounds array access vulnerability exists in the xrow_header_decode function... High Unreviewed
CVE-2016-9037 was published May 13, 2022
An exploitable out-of-bounds read vulnerability exists in the client message-parsing... High Unreviewed
CVE-2016-9050 was published May 13, 2022
Moddable commit before 135aa9a4a6a9b49b60aa730ebc3bcc6247d75c45 was discovered to contain an out... High Unreviewed
CVE-2022-29368 was published May 13, 2022
A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and... High Unreviewed
CVE-2021-27482 was published May 13, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x... High Unreviewed
CVE-2022-28243 was published May 12, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x... High Unreviewed
CVE-2022-28241 was published May 12, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x... High Unreviewed
CVE-2022-28239 was published May 12, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012... High Unreviewed
CVE-2022-28231 was published May 12, 2022
In ng_pkt in transports/smart_pkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote... High Unreviewed
CVE-2018-15501 was published May 12, 2022
Buffer Over-read in function find_next_quote in GitHub repository vim/vim prior to 8.2.4925. This... High Unreviewed
CVE-2022-1629 was published May 11, 2022
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1... High Unreviewed
CVE-2022-28739 was published May 10, 2022
Out-of-bounds read in admesh High
CVE-2018-25033 was published for admesh (pip) May 9, 2022
Adobe Photoshop versions 22.5.6 (and earlier) and 23.2.2 (and earlier) are affected by an out-of... High Unreviewed
CVE-2022-28274 was published May 7, 2022
In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef:... High Unreviewed
CVE-2019-7310 was published May 4, 2022
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash.... High Unreviewed
CVE-2019-10895 was published May 4, 2022
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC dissector could crash. This... High Unreviewed
CVE-2019-10899 was published May 4, 2022
The License Logging Server (llssrv.exe) in Microsoft Windows 2000 SP4 allows remote attackers to... High Unreviewed
CVE-2009-2523 was published May 2, 2022
Local user gains root privileges via buffer overflow in rdist, via expstr() function. High Unreviewed
CVE-1999-0022 was published Apr 30, 2022
root privileges via buffer overflow in ordist command on SGI IRIX systems. High Unreviewed
CVE-1999-0029 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database