Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,246
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,840 advisories

Loading
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the... Critical Unreviewed
CVE-2022-30917 was published Jun 9, 2022
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the... Critical Unreviewed
CVE-2022-30924 was published Jun 9, 2022
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the... Critical Unreviewed
CVE-2022-30913 was published Jun 9, 2022
In read_multi_rsp of gatt_sr.cc, there is a possible out of bounds write due to an incorrect... Critical Unreviewed
CVE-2022-20140 was published Jun 16, 2022
The bone voice ID TA has a memory overwrite vulnerability. Successful exploitation of this... Critical Unreviewed
CVE-2021-40036 was published Jun 14, 2022
In ce_t4t_data_cback of ce_t4t.cc, there is a possible out of bounds write due to a double free.... Critical Unreviewed
CVE-2022-20127 was published Jun 16, 2022
A heap-based buffer overflow vulnerability exists in the pushMuxer processRtspInfo functionality... Critical Unreviewed
CVE-2021-21940 was published May 24, 2022
Improper buffer size validation of DSM packet received can lead to memory corruption in... Critical Unreviewed
CVE-2021-30341 was published Jun 15, 2022
pdf2xml v2.0 was discovered to contain a heap-buffer overflow in the function TextPage::dump. Critical Unreviewed
CVE-2020-23873 was published May 24, 2022
Heap-based Buffer Overflow in vim/vim prior to 8.2. Critical Unreviewed
CVE-2022-0318 was published Jan 22, 2022
A stack-based buffer overflow vulnerability exists in the BlynkConsole.h runCommand functionality... Critical Unreviewed
CVE-2022-29496 was published Jun 18, 2022
An exploitable out-of-bounds write vulnerability in PotPlayer 1.7.21523 build 210729 may lead to... Critical Unreviewed
CVE-2021-40212 was published Jun 16, 2022
In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer... Critical Unreviewed
CVE-2022-34835 was published Jul 1, 2022
PDFAlto v0.4 was discovered to contain a heap buffer overflow via the component /pdfalto/src... Critical Unreviewed
CVE-2022-32324 was published Jul 2, 2022
OTFCC v0.10.4 was discovered to contain a heap buffer overflow after free via otfccbuild.c. Critical Unreviewed
CVE-2022-33047 was published Jul 7, 2022
Tenda AC23 v16.03.07.44 is vulnerable to Stack Overflow that will allow for the execution of... Critical Unreviewed
CVE-2022-32385 was published Jul 7, 2022
In transportDec_OutOfBandConfig of tpdec_lib.cpp, there is a possible out of bounds write due to... Critical Unreviewed
CVE-2022-20130 was published Jun 16, 2022
** DISPUTED ** md2roff 1.7 has a stack-based buffer overflow via a Markdown file containing a... Critical Unreviewed
CVE-2022-34913 was published Jul 3, 2022
In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could... Critical Unreviewed
CVE-2022-21744 was published Jul 7, 2022
In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This... Critical Unreviewed
CVE-2022-20083 was published Jul 7, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed
CVE-2016-4177 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed
CVE-2016-4176 was published May 14, 2022
The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel through 4.14.11... Critical Unreviewed
CVE-2018-5703 was published May 14, 2022
FFmpeg before 2017-01-23 has an out-of-bounds write caused by a stack-based buffer overflow... Critical Unreviewed
CVE-2017-7866 was published May 17, 2022
Google gRPC before 2017-02-22 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2017-7860 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API