GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,246
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,840 advisories
Filter by severity
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the...
Critical
Unreviewed
CVE-2022-30917
was published
Jun 9, 2022
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the...
Critical
Unreviewed
CVE-2022-30924
was published
Jun 9, 2022
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the...
Critical
Unreviewed
CVE-2022-30913
was published
Jun 9, 2022
In read_multi_rsp of gatt_sr.cc, there is a possible out of bounds write due to an incorrect...
Critical
Unreviewed
CVE-2022-20140
was published
Jun 16, 2022
The bone voice ID TA has a memory overwrite vulnerability. Successful exploitation of this...
Critical
Unreviewed
CVE-2021-40036
was published
Jun 14, 2022
In ce_t4t_data_cback of ce_t4t.cc, there is a possible out of bounds write due to a double free....
Critical
Unreviewed
CVE-2022-20127
was published
Jun 16, 2022
A heap-based buffer overflow vulnerability exists in the pushMuxer processRtspInfo functionality...
Critical
Unreviewed
CVE-2021-21940
was published
May 24, 2022
Improper buffer size validation of DSM packet received can lead to memory corruption in...
Critical
Unreviewed
CVE-2021-30341
was published
Jun 15, 2022
pdf2xml v2.0 was discovered to contain a heap-buffer overflow in the function TextPage::dump.
Critical
Unreviewed
CVE-2020-23873
was published
May 24, 2022
Heap-based Buffer Overflow in vim/vim prior to 8.2.
Critical
Unreviewed
CVE-2022-0318
was published
Jan 22, 2022
A stack-based buffer overflow vulnerability exists in the BlynkConsole.h runCommand functionality...
Critical
Unreviewed
CVE-2022-29496
was published
Jun 18, 2022
An exploitable out-of-bounds write vulnerability in PotPlayer 1.7.21523 build 210729 may lead to...
Critical
Unreviewed
CVE-2021-40212
was published
Jun 16, 2022
In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer...
Critical
Unreviewed
CVE-2022-34835
was published
Jul 1, 2022
PDFAlto v0.4 was discovered to contain a heap buffer overflow via the component /pdfalto/src...
Critical
Unreviewed
CVE-2022-32324
was published
Jul 2, 2022
OTFCC v0.10.4 was discovered to contain a heap buffer overflow after free via otfccbuild.c.
Critical
Unreviewed
CVE-2022-33047
was published
Jul 7, 2022
Tenda AC23 v16.03.07.44 is vulnerable to Stack Overflow that will allow for the execution of...
Critical
Unreviewed
CVE-2022-32385
was published
Jul 7, 2022
In transportDec_OutOfBandConfig of tpdec_lib.cpp, there is a possible out of bounds write due to...
Critical
Unreviewed
CVE-2022-20130
was published
Jun 16, 2022
** DISPUTED ** md2roff 1.7 has a stack-based buffer overflow via a Markdown file containing a...
Critical
Unreviewed
CVE-2022-34913
was published
Jul 3, 2022
In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could...
Critical
Unreviewed
CVE-2022-21744
was published
Jul 7, 2022
In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This...
Critical
Unreviewed
CVE-2022-20083
was published
Jul 7, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X...
Critical
Unreviewed
CVE-2016-4177
was published
May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X...
Critical
Unreviewed
CVE-2016-4176
was published
May 14, 2022
The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel through 4.14.11...
Critical
Unreviewed
CVE-2018-5703
was published
May 14, 2022
FFmpeg before 2017-01-23 has an out-of-bounds write caused by a stack-based buffer overflow...
Critical
Unreviewed
CVE-2017-7866
was published
May 17, 2022
Google gRPC before 2017-02-22 has an out-of-bounds write caused by a heap-based buffer overflow...
Critical
Unreviewed
CVE-2017-7860
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API