Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

180 advisories

Loading
A remote, authenticated attacker can send a specific crafted HTTP or HTTPS requests causing a... Moderate Unreviewed
CVE-2022-22519 was published Apr 8, 2022
Buffer Over-read in function find_next_quote in GitHub repository vim/vim prior to 8.2.4925. This... High Unreviewed
CVE-2022-1629 was published May 11, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-1769 was published May 18, 2022
Wangle's LineBasedFrameDecoder contains logic for identifying newlines which incorrectly advances... Critical Unreviewed
CVE-2019-3563 was published May 24, 2022
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2... Critical Unreviewed
CVE-2019-11036 was published May 24, 2022
tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose... Moderate Unreviewed
CVE-2019-1010220 was published May 24, 2022
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol... High Unreviewed
CVE-2021-1373 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34321 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34325 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34322 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34320 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34308 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34302 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34304 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34303 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34299 was published May 24, 2022
Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a... Critical Unreviewed
CVE-2021-34584 was published May 24, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. Critical Unreviewed
CVE-2022-1927 was published May 30, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-2124 was published Jun 20, 2022
Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This... High Unreviewed
CVE-2022-1720 was published Jun 21, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-2175 was published Jun 24, 2022
Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may... Moderate Unreviewed
CVE-2022-32141 was published Jun 25, 2022
Buffer Over-read in GitHub repository vim/vim prior to 9.0.0217. High Unreviewed
CVE-2022-2845 was published Aug 18, 2022
A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied)... High Unreviewed
CVE-2020-35511 was published Aug 24, 2022
Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV. High Unreviewed
CVE-2022-3178 was published Sep 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database