Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

5,450 advisories

Loading
Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox... High Unreviewed
CVE-2022-2505 was published Dec 22, 2022
ASUS RT-AX56U’s user profile configuration function is vulnerable to stack-based buffer overflow... High Unreviewed
CVE-2022-23973 was published Apr 8, 2022
A Memory Corruption vulnerability for DWF and DWFX files in Autodesk AutoCAD 2022, 2021, 2020,... High Unreviewed
CVE-2022-25791 was published Apr 12, 2022
libsixel 1.8.6 is affected by Buffer Overflow in libsixel/src/quant.c:876. High Unreviewed
CVE-2022-27044 was published Apr 9, 2022
In ppmp_validate_wsm of drm_fw.c, there is a possible out of bounds write due to an incorrect... High Unreviewed
CVE-2021-39814 was published Apr 13, 2022
D-Link DIR-619 Ax v1.00 was discovered to contain a stack overflow in the function... High Unreviewed
CVE-2022-27291 was published Apr 11, 2022
D-Link DIR-619 Ax v1.00 was discovered to contain a stack overflow in the function formWlanSetup.... High Unreviewed
CVE-2022-27293 was published Apr 11, 2022
D-Link DIR-619 Ax v1.00 was discovered to contain a stack overflow in the function formSetWanL2TP... High Unreviewed
CVE-2022-27289 was published Apr 11, 2022
libsixel before 1.10 is vulnerable to Buffer Overflow in libsixel/src/quant.c:867. High Unreviewed
CVE-2021-40656 was published Apr 9, 2022
A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V,... High Unreviewed
CVE-2022-25753 was published Apr 13, 2022
A vulnerability has been identified in Simcenter Femap (All versions < V2022.1.2). The affected... High Unreviewed
CVE-2022-28663 was published Apr 13, 2022
D-Link DIR-619 Ax v1.00 was discovered to contain a stack overflow in the function... High Unreviewed
CVE-2022-27290 was published Apr 11, 2022
An out-of-bounds write vulnerability exists in the parse_raster_data functionality of Accusoft... High Unreviewed
CVE-2021-40398 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21945 was published Apr 15, 2022
Improper input validation vulnerability in parser_infe and sheifd_find_itemIndexin fuctions of... High Unreviewed
CVE-2022-27573 was published Apr 12, 2022
Improper input validation vulnerability in parser_iloc and sheifd_find_itemIndexin fuctions of... High Unreviewed
CVE-2022-27574 was published Apr 12, 2022
A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks... High Unreviewed
CVE-2022-25790 was published Apr 12, 2022
A vulnerability classified as problematic was found in Ghostscript 9.55.0. This vulnerability... High Unreviewed
CVE-2022-1350 was published Apr 15, 2022
By overlong input values an attacker may force overwrite of the internal program stack in SAP Web... High Unreviewed
CVE-2022-28772 was published Apr 13, 2022
A maliciously crafted PICT, BMP, PSD or TIF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 may... High Unreviewed
CVE-2022-27529 was published Apr 19, 2022
A malicious crafted TGA file when consumed through DesignReview.exe application could lead to... High Unreviewed
CVE-2022-27526 was published Apr 19, 2022
A maliciously crafted JT file in Autodesk AutoCAD 2022 may be used to write beyond the allocated... High Unreviewed
CVE-2022-25788 was published Apr 20, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21944 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21946 was published Apr 15, 2022
An out-of-bounds write vulnerability exists in the TIFF YCbCr image parser functionality of... High Unreviewed
CVE-2021-21942 was published Apr 15, 2022
ProTip! Advisories are also available from the GraphQL API