Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

169 advisories

Loading
Information disclosure due to buffer over-read in modem while reading configuration parameters. High Unreviewed
CVE-2022-33258 was published Apr 13, 2023
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming. High Unreviewed
CVE-2022-40503 was published Apr 13, 2023
Information disclosure due to buffer overread in Linux sensors Moderate Unreviewed
CVE-2022-33297 was published Apr 13, 2023
On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe)... High Unreviewed
CVE-2023-24513 was published Apr 12, 2023
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size... High Unreviewed
CVE-2022-33309 was published Mar 10, 2023
Transient DOS due to buffer over-read in WLAN while sending a packet to device. High Unreviewed
CVE-2022-40535 was published Mar 10, 2023
Buffer Over-read in GitHub repository gpac/gpac prior to v2.3.0-DEV. High Unreviewed
CVE-2023-0817 was published Feb 14, 2023
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with... High Unreviewed
CVE-2022-33306 was published Feb 12, 2023
Transient DOS due to buffer over-read in WLAN Host while parsing frame information. High Unreviewed
CVE-2022-34145 was published Feb 12, 2023
Information disclosure due to buffer over-read in Modem while using static array to process IPv4... High Unreviewed
CVE-2022-33229 was published Feb 12, 2023
Information disclosure in Trusted Execution Environment due to buffer over-read while processing... Moderate Unreviewed
CVE-2022-33221 was published Feb 12, 2023
Information disclosure in modem due to buffer over read in dns client due to missing length check High Unreviewed
CVE-2022-25732 was published Feb 12, 2023
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. High Unreviewed
CVE-2022-40512 was published Feb 12, 2023
Information disclosure due to buffer over-read in WLAN while parsing NMF frame. High Unreviewed
CVE-2022-33271 was published Feb 12, 2023
Information disclosure in modem due to buffer over-red while performing checksum of packet received High Unreviewed
CVE-2022-25738 was published Feb 12, 2023
Information disclosure in modem due to buffer over-read while processing response from DNS server High Unreviewed
CVE-2022-25728 was published Feb 12, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS PersistenceConfigDxe... Moderate Unreviewed
CVE-2022-4432 was published Jan 5, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS LenovoSetupConfigDxe... Moderate Unreviewed
CVE-2022-4433 was published Jan 5, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS... Moderate Unreviewed
CVE-2022-4435 was published Jan 5, 2023
Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV. High Unreviewed
CVE-2022-3178 was published Sep 13, 2022
A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied)... High Unreviewed
CVE-2020-35511 was published Aug 24, 2022
Buffer Over-read in GitHub repository vim/vim prior to 9.0.0217. High Unreviewed
CVE-2022-2845 was published Aug 18, 2022
Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may... Moderate Unreviewed
CVE-2022-32141 was published Jun 25, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-2175 was published Jun 24, 2022
Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This... High Unreviewed
CVE-2022-1720 was published Jun 21, 2022
ProTip! Advisories are also available from the GraphQL API