Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,018 advisories

Loading
A flaw was found in OpenEXR's Multipart input file functionality. A crafted multi-part input file... High Unreviewed
CVE-2021-20299 was published Mar 17, 2022
GPAC 1.0.1 is affected by a NULL pointer dereference in gf_utf8_wcslen (). High Unreviewed
CVE-2022-24577 was published Mar 15, 2022
An issue was discovered in Softing OPC UA C++ SDK before 5.70. A malformed OPC/UA message abort... High Unreviewed
CVE-2021-42577 was published Mar 13, 2022
NULL Pointer Dereference in GitHub repository mruby/mruby prior to 3.2. High Unreviewed
CVE-2022-0890 was published Mar 11, 2022
Null pointer dereference in the htmldoc v1.9.11 and before may allow attackers to execute... High Unreviewed
CVE-2021-26948 was published Mar 5, 2022
A security issue was found in htmldoc v1.9.12 and before. A NULL pointer dereference in the... High Unreviewed
CVE-2021-23191 was published Mar 4, 2022
A flaw was found in htmldoc in v1.9.12 and before. Null pointer dereference in file_extension()... High Unreviewed
CVE-2021-23180 was published Mar 4, 2022
NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.6.4. High Unreviewed
CVE-2022-0712 was published Feb 23, 2022
Possible null pointer dereference due to lack of WDOG structure validation during registration in... High Unreviewed
CVE-2021-35075 was published Feb 12, 2022
Nil dereference in NATS JWT, DoS of nats-server High
CVE-2020-26521 was published for github.com/nats-io/jwt (Go) Feb 11, 2022
NULL Pointer Dereference in Homebrew mruby prior to 3.2. High Unreviewed
CVE-2022-0481 was published Feb 11, 2022
Null-dereference in Tensorflow High
CVE-2022-23577 was published for tensorflow (pip) Feb 10, 2022
A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that... High Unreviewed
CVE-2021-41839 was published Feb 10, 2022
Null pointer dereference in TensorFlow High
CVE-2022-21739 was published for tensorflow (pip) Feb 9, 2022
Undefined behavior in `SparseTensorSliceDataset` High
CVE-2022-21736 was published for tensorflow (pip) Feb 9, 2022
Null-dereference in Tensorflow High
CVE-2022-23570 was published for tensorflow (pip) Feb 9, 2022
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat High
CVE-2020-13934 was published for org.apache.tomcat:tomcat (Maven) Feb 8, 2022
NumPy NULL Pointer Dereference High
CVE-2021-41495 was published for numpy (pip) Feb 8, 2022
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash ... High Unreviewed
CVE-2021-44224 was published Feb 8, 2022
Codesys Profinet in version V4.2.0.0 is prone to null pointer dereference that allows a denial of... High Unreviewed
CVE-2022-22510 was published Feb 3, 2022
MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value... High Unreviewed
CVE-2021-46664 was published Feb 2, 2022
Withdrawn Advisory: NULL Pointer Dereference in Protocol Buffers High
CVE-2021-22570 was published for Google.Protobuf (Composer) Jan 27, 2022 withdrawn
joshbressers
Credited to joshbressers
On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP SSL Forward Proxy with... High Unreviewed
CVE-2022-23016 was published Jan 26, 2022
On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all... High Unreviewed
CVE-2022-23017 was published Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2, when the 'Respond on Error' setting is enabled on the... High Unreviewed
CVE-2022-23020 was published Jan 26, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database