Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,246
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,113 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46636 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46641 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-24358 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-24356 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-24971 was published Feb 19, 2022
Out of bounds memory access in Blink Serial API in Google Chrome prior to 97.0.4692.71 allowed a... High Unreviewed
CVE-2022-0114 was published Feb 13, 2022
Out-of-bounds Read in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0393 was published Feb 12, 2022
In startVideoStream() there is a possibility of an OOB Read in the heap, when the camera buffer... High Unreviewed
CVE-2021-39677 was published Feb 12, 2022
A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 may be forced to read... High Unreviewed
CVE-2021-40158 was published Feb 11, 2022
A security out-of-bounds read information disclosure vulnerability in Trend Micro Worry-Free... High Unreviewed
CVE-2022-23805 was published Feb 11, 2022
A CWE-125: Out-of-bounds Read vulnerability exists that could cause memory leaks potentially... High Unreviewed
CVE-2022-24314 was published Feb 11, 2022
A CWE-125: Out-of-bounds Read vulnerability exists that could cause denial of service when an... High Unreviewed
CVE-2022-24315 was published Feb 11, 2022
In Eclipse Wakaama, ever since its inception until 2021-01-14, the CoAP parsing code does not... High Unreviewed
CVE-2021-41040 was published Feb 2, 2022
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec... High Unreviewed
CVE-2021-4034 was published Jan 29, 2022
Out-of-bounds Read in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0368 was published Jan 27, 2022
When a zone file in ldns 1.7.1 is parsed, the function ldns_nsec3_salt_data is too trusted for... High Unreviewed
CVE-2020-19861 was published Jan 22, 2022
A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) Software version 0.104.1... High Unreviewed
CVE-2022-20698 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-45060 was published Jan 15, 2022
Adobe InCopy version 16.4 (and earlier) is affected by an out-of-bounds read vulnerability when... High Unreviewed
CVE-2021-45055 was published Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34858 was published Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34880 was published Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34885 was published Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34912 was published Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34913 was published Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34927 was published Jan 14, 2022
ProTip! Advisories are also available from the GraphQL API