GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,246
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,113 advisories
Filter by severity
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46636
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46641
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-24358
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-24356
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-24971
was published
Feb 19, 2022
Out of bounds memory access in Blink Serial API in Google Chrome prior to 97.0.4692.71 allowed a...
High
Unreviewed
CVE-2022-0114
was published
Feb 13, 2022
Out-of-bounds Read in Conda vim prior to 8.2.
High
Unreviewed
CVE-2022-0393
was published
Feb 12, 2022
In startVideoStream() there is a possibility of an OOB Read in the heap, when the camera buffer...
High
Unreviewed
CVE-2021-39677
was published
Feb 12, 2022
A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 may be forced to read...
High
Unreviewed
CVE-2021-40158
was published
Feb 11, 2022
A security out-of-bounds read information disclosure vulnerability in Trend Micro Worry-Free...
High
Unreviewed
CVE-2022-23805
was published
Feb 11, 2022
A CWE-125: Out-of-bounds Read vulnerability exists that could cause memory leaks potentially...
High
Unreviewed
CVE-2022-24314
was published
Feb 11, 2022
A CWE-125: Out-of-bounds Read vulnerability exists that could cause denial of service when an...
High
Unreviewed
CVE-2022-24315
was published
Feb 11, 2022
In Eclipse Wakaama, ever since its inception until 2021-01-14, the CoAP parsing code does not...
High
Unreviewed
CVE-2021-41040
was published
Feb 2, 2022
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec...
High
Unreviewed
CVE-2021-4034
was published
Jan 29, 2022
Out-of-bounds Read in Conda vim prior to 8.2.
High
Unreviewed
CVE-2022-0368
was published
Jan 27, 2022
When a zone file in ldns 1.7.1 is parsed, the function ldns_nsec3_salt_data is too trusted for...
High
Unreviewed
CVE-2020-19861
was published
Jan 22, 2022
A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) Software version 0.104.1...
High
Unreviewed
CVE-2022-20698
was published
Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204...
High
Unreviewed
CVE-2021-45060
was published
Jan 15, 2022
Adobe InCopy version 16.4 (and earlier) is affected by an out-of-bounds read vulnerability when...
High
Unreviewed
CVE-2021-45055
was published
Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-34858
was published
Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-34880
was published
Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-34885
was published
Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-34912
was published
Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-34913
was published
Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-34927
was published
Jan 14, 2022
ProTip!
Advisories are also available from the
GraphQL API