Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

476 advisories

Loading
xterm through Patch 370, when Sixel support is enabled, allows attackers to trigger a buffer... Moderate Unreviewed
CVE-2022-24130 was published Feb 8, 2022
Possible buffer overflow due to improper data validation of external commands sent via DIAG... Moderate Unreviewed
CVE-2021-30331 was published Apr 2, 2022
A potential buffer overflow vulnerability was identified in some internal functions of Zyxel... Moderate Unreviewed
CVE-2022-26414 was published Apr 12, 2022
A denial of service vulnerability was reported in Lenovo Thin Installer prior to version 1.3.0039... Moderate Unreviewed
CVE-2022-0636 was published Apr 23, 2022
An exploitable buffer overflow vulnerability exists in the UPnP implementation used by the Foscam... Moderate Unreviewed
CVE-2017-2879 was published May 13, 2022
Multiple buffer overflows in STLport before 5.0.3 allow remote attackers to execute arbitrary... Moderate Unreviewed
CVE-2007-0803 was published May 1, 2022
Multiple buffer overflows in STLport 5.0.2 might allow local users to execute arbitrary code via ... Moderate Unreviewed
CVE-2006-0963 was published May 1, 2022
The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0... Moderate Unreviewed
CVE-2014-0195 was published May 14, 2022
An exploitable remote code execution vulnerability exists in the iw_webs configuration parsing... Moderate Unreviewed
CVE-2019-5153 was published May 24, 2022
A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex... Moderate Unreviewed
CVE-2020-16302 was published May 24, 2022
A crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value in NTFS-3G through... Moderate Unreviewed
CVE-2022-30784 was published May 27, 2022
Das U-Boot 2022.01 has a Buffer Overflow. Moderate Unreviewed
CVE-2022-30552 was published Jun 9, 2022
Realtek USB driver has a buffer overflow vulnerability due to insufficient parameter length... Moderate Unreviewed
CVE-2022-21742 was published Jun 21, 2022
Multiple CODESYS products are affected to a buffer overflow.A low privileged remote attacker may... Moderate Unreviewed
CVE-2022-32140 was published Jun 25, 2022
The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed
CVE-2022-34740 was published Jul 13, 2022
The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed
CVE-2022-34741 was published Jul 13, 2022
GtkRadiant v1.6.6 was discovered to contain a buffer overflow via the component q3map2. This... Moderate Unreviewed
CVE-2022-32406 was published Jul 15, 2022
A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack... Moderate Unreviewed
CVE-2020-10713 was published May 24, 2022
Buffer overflow vulnerability in function AP4_MemoryByteStream::WritePartial in mp42aac in Bento4... Moderate Unreviewed
CVE-2022-40438 was published Sep 15, 2022
A vulnerability has been identified in OpenV2G (V0.9.4). The OpenV2G EXI parsing feature is... Moderate Unreviewed
CVE-2022-27242 was published May 21, 2022
A buffer overflow vulnerability in Lenovo Smart Standby Driver prior to version 4.1.50.0 could... Moderate Unreviewed
CVE-2022-1110 was published May 19, 2022
lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks. Moderate Unreviewed
CVE-2019-15166 was published May 24, 2022
Possible stack overflow when an index equal to io buffer size is accessed in camera module in... Moderate Unreviewed
CVE-2019-10502 was published May 24, 2022
A stack corruption bug was found in libtpms in versions before 0.7.2 and before 0.8.0 while... Moderate Unreviewed
CVE-2021-3569 was published May 24, 2022
A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba... Moderate Unreviewed
CVE-2020-10704 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database