Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

305 advisories

Loading
In wlan driver, there is a possible missing bounds check, This could lead to local denial of... Moderate Unreviewed
CVE-2022-42781 was published Dec 6, 2022
In wlan driver, there is a possible missing bounds check, This could lead to local denial of... Moderate Unreviewed
CVE-2022-42780 was published Dec 6, 2022
In face detect driver, there is a possible out of bounds write due to a missing bounds check.... Moderate Unreviewed
CVE-2022-38673 was published Oct 15, 2022
Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV. High Unreviewed
CVE-2022-3178 was published Sep 13, 2022
A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied)... High Unreviewed
CVE-2020-35511 was published Aug 24, 2022
Buffer Over-read in GitHub repository vim/vim prior to 9.0.0217. High Unreviewed
CVE-2022-2845 was published Aug 18, 2022
Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may... Moderate Unreviewed
CVE-2022-32141 was published Jun 25, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-2175 was published Jun 24, 2022
Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This... High Unreviewed
CVE-2022-1720 was published Jun 21, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-2124 was published Jun 20, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. Critical Unreviewed
CVE-2022-1927 was published May 30, 2022
Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a... Critical Unreviewed
CVE-2021-34584 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34299 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34302 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34303 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34304 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34308 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34320 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34322 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34325 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34321 was published May 24, 2022
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol... High Unreviewed
CVE-2021-1373 was published May 24, 2022
tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose... Moderate Unreviewed
CVE-2019-1010220 was published May 24, 2022
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2... Critical Unreviewed
CVE-2019-11036 was published May 24, 2022
Wangle's LineBasedFrameDecoder contains logic for identifying newlines which incorrectly advances... Critical Unreviewed
CVE-2019-3563 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database