Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,929 advisories

Loading
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_get_cstring at src... High Unreviewed
CVE-2021-46527 was published Jan 28, 2022
iDRAC9 versions prior to 5.00.20.00 and iDRAC8 versions prior to 2.82.82.82 contain a stack-based... High Unreviewed
CVE-2021-36347 was published Jan 27, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0359 was published Jan 27, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0361 was published Jan 27, 2022
Jerryscript v3.0.0 and below was discovered to contain a stack overflow via... High Unreviewed
CVE-2021-44988 was published Jan 26, 2022
Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src... High Unreviewed
CVE-2021-46483 was published Jan 26, 2022
Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src... High Unreviewed
CVE-2021-46482 was published Jan 26, 2022
xhtml_translate_entity in xhtml.c in epub2txt (aka epub2txt2) through 2.02 allows a stack-based... High Unreviewed
CVE-2022-23850 was published Jan 24, 2022
Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_op_object_find_own in /ecma... High Unreviewed
CVE-2022-22888 was published Jan 22, 2022
Jerryscript 3.0.0 was discovered to contain a stack overflow via vm_loop.lto_priv.304 in /jerry... High Unreviewed
CVE-2022-22893 was published Jan 22, 2022
Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_lcache_lookup in /jerry... High Unreviewed
CVE-2022-22894 was published Jan 22, 2022
Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via... High Unreviewed
CVE-2022-22895 was published Jan 22, 2022
ASUS VivoMini/Mini PC device has an improper input validation vulnerability. A local attacker... High Unreviewed
CVE-2022-21933 was published Jan 22, 2022
AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata (such... High Unreviewed
CVE-2021-45417 was published Jan 21, 2022
Espruino 2v11.251 was discovered to contain a stack buffer overflow via src/jsvar.c in... High Unreviewed
CVE-2021-46324 was published Jan 21, 2022
Espruino 2v10.246 was discovered to contain a stack buffer overflow via src/jsutils.c in vcbprintf. High Unreviewed
CVE-2021-46325 was published Jan 21, 2022
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component... High Unreviewed
CVE-2021-46326 was published Jan 21, 2022
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component... High Unreviewed
CVE-2021-46328 was published Jan 21, 2022
Moddable SDK v11.5.0 was discovered to contain a stack buffer overflow via the component... High Unreviewed
CVE-2021-46334 was published Jan 21, 2022
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via xs/sources/xsDataView.c... High Unreviewed
CVE-2021-46332 was published Jan 21, 2022
There is a Out-of-Bound Write in the Allwinner R818 SoC Android Q SDK V1.0 camera driver "/dev... High Unreviewed
CVE-2021-38783 was published Jan 19, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-0261 was published Jan 19, 2022
A stack overflow in the HTTP server of Cast can be exploited to make the app crash in LAN. High Unreviewed
CVE-2020-14107 was published Jan 19, 2022
Open Design Alliance Drawings SDK before 2022.12.1 mishandles the loading of JPG files. Unchecked... High Unreviewed
CVE-2022-23095 was published Jan 16, 2022
vim is vulnerable to Heap-based Buffer Overflow High Unreviewed
CVE-2022-0213 was published Jan 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database