Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,946 advisories

Loading
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft... High Unreviewed
CVE-2021-21943 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of... High Unreviewed
CVE-2021-21914 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic... High Unreviewed
CVE-2021-21948 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft... High Unreviewed
CVE-2021-21939 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21947 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the Palette box parser functionality of... High Unreviewed
CVE-2021-21938 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21945 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21946 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of... High Unreviewed
CVE-2021-40426 was published Apr 15, 2022
An out-of-bounds write vulnerability exists in the parse_raster_data functionality of Accusoft... High Unreviewed
CVE-2021-40398 was published Apr 15, 2022
A Memory Corruption Vulnerability in Autodesk TrueView 2022 and 2021 may lead to remote code... High Unreviewed
CVE-2022-25797 was published Apr 14, 2022
A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V,... High Unreviewed
CVE-2022-25753 was published Apr 13, 2022
A vulnerability has been identified in Simcenter Femap (All versions < V2022.1.2). The affected... High Unreviewed
CVE-2022-28663 was published Apr 13, 2022
It may be possible to have an extremely long aggregation pipeline in conjunction with a specific... High Unreviewed
CVE-2021-32040 was published Apr 13, 2022
In ppmp_validate_wsm of drm_fw.c, there is a possible out of bounds write due to an incorrect... High Unreviewed
CVE-2021-39814 was published Apr 13, 2022
By overlong input values an attacker may force overwrite of the internal program stack in SAP Web... High Unreviewed
CVE-2022-28772 was published Apr 13, 2022
Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math at /tcpedit/checksum.c. High Unreviewed
CVE-2022-27418 was published Apr 13, 2022
A maliciously crafted DXF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks... High Unreviewed
CVE-2022-25792 was published Apr 12, 2022
A Memory Corruption vulnerability for DWF and DWFX files in Autodesk AutoCAD 2022, 2021, 2020,... High Unreviewed
CVE-2022-25791 was published Apr 12, 2022
A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks... High Unreviewed
CVE-2022-25790 was published Apr 12, 2022
Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows arbitrary... High Unreviewed
CVE-2022-26092 was published Apr 12, 2022
Improper input validation vulnerability in parser_iloc and sheifd_find_itemIndexin fuctions of... High Unreviewed
CVE-2022-27574 was published Apr 12, 2022
Improper input validation vulnerability in parser_infe and sheifd_find_itemIndexin fuctions of... High Unreviewed
CVE-2022-27573 was published Apr 12, 2022
Improper boundary check in UWB firmware prior to SMR Apr-2022 Release 1 allows arbitrary memory... High Unreviewed
CVE-2022-27835 was published Apr 12, 2022
Out-of-bounds Write in zlib affects Nokogiri High
GHSA-v6gp-9mmm-c6p5 was published for nokogiri (RubyGems) Apr 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database