GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
45 advisories
Filter by severity
There is an incorrect buffer size calculation vulnerability in the video framework. Successful...
High
Unreviewed
CVE-2021-40048
was published
Mar 11, 2022
An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). Using...
High
Unreviewed
CVE-2021-44510
was published
Apr 16, 2022
An exploitable arbitrary write vulnerability exists in the open document format parser of the...
High
Unreviewed
CVE-2018-4038
was published
May 13, 2022
An out-of-bounds write vulnerability exists in the SGI Format Buffer Size Processing...
High
Unreviewed
CVE-2021-21776
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the SGI format buffer size processing...
High
Unreviewed
CVE-2021-21782
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the PSD Header processing functionality of...
High
Unreviewed
CVE-2020-13585
was published
May 24, 2022
There is an incorrect buffer size calculation vulnerability in the video framework. Successful...
High
Unreviewed
CVE-2021-40052
was published
Mar 11, 2022
An out-of-bounds write vulnerability exists in the JPG sof_nb_comp header processing...
High
Unreviewed
CVE-2021-21793
was published
May 24, 2022
Due to insufficient validation of ELF headers, an Incorrect Calculation of Buffer Size can occur...
High
Unreviewed
CVE-2021-35134
was published
Sep 3, 2022
Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not...
High
Unreviewed
CVE-2020-11240
was published
May 24, 2022
There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of...
High
Unreviewed
CVE-2021-22391
was published
May 24, 2022
There is an Incorrect Calculation of Buffer Size Vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-22415
was published
May 24, 2022
There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of...
High
Unreviewed
CVE-2021-22392
was published
May 24, 2022
The asn1_get_bit_der function in GNU Libtasn1 before 3.6 does not properly report an error when a...
High
Unreviewed
CVE-2014-3468
was published
May 13, 2022
An elevation of privilege vulnerability exists in Windows when LDAP request buffer lengths are...
High
Unreviewed
CVE-2017-0166
was published
May 13, 2022
An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local...
High
Unreviewed
CVE-2017-0569
was published
May 13, 2022
In writeToParcel and createFromParcel of RttManager.java, there is a permission bypass due to a...
High
Unreviewed
CVE-2017-13289
was published
May 13, 2022
An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS)....
High
Unreviewed
CVE-2020-36475
was published
May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-24908
was published
Mar 28, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-24907
was published
Mar 28, 2023
A vulnerability has been identified in OpenPCS 7 V8.1 (All versions), OpenPCS 7 V8.2 (All...
High
Unreviewed
CVE-2019-19282
was published
May 24, 2022
Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378.
High
Unreviewed
CVE-2023-1175
was published
Mar 4, 2023
An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of...
High
Unreviewed
CVE-2021-21773
was published
May 24, 2022
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by...
High
Unreviewed
CVE-2001-0249
was published
Apr 30, 2022
Buffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via...
High
Unreviewed
CVE-2004-1363
was published
Apr 29, 2022
ProTip!
Advisories are also available from the
GraphQL API