Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,808 advisories

Loading
Suricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a client with a crafted TCP/IP... Critical Unreviewed
CVE-2021-37592 was published Nov 20, 2021
A flaw was found in mbsync in isync 1.4.0 through 1.4.3. Due to an unchecked condition, a... Critical Unreviewed
CVE-2021-44143 was published Nov 23, 2021
There is a Heap-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation... Critical Unreviewed
CVE-2021-37022 was published Nov 24, 2021
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to... Critical Unreviewed
CVE-2021-33274 was published Dec 2, 2021
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to... Critical Unreviewed
CVE-2021-33269 was published Dec 2, 2021
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to... Critical Unreviewed
CVE-2021-33270 was published Dec 2, 2021
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to... Critical Unreviewed
CVE-2021-33267 was published Dec 2, 2021
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to... Critical Unreviewed
CVE-2021-33268 was published Dec 2, 2021
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to... Critical Unreviewed
CVE-2021-33265 was published Dec 2, 2021
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to... Critical Unreviewed
CVE-2021-33271 was published Dec 2, 2021
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to... Critical Unreviewed
CVE-2021-33266 was published Dec 2, 2021
LibreDWG v0.12.3 was discovered to contain a heap-buffer overflow via decode_preR13. Critical Unreviewed
CVE-2021-28237 was published Dec 3, 2021
tsMuxer v2.6.16 was discovered to contain a heap-based buffer overflow via the function... Critical Unreviewed
CVE-2021-35346 was published Dec 4, 2021
tsMuxer v2.6.16 was discovered to contain a heap-based buffer overflow via the function... Critical Unreviewed
CVE-2021-35344 was published Dec 4, 2021
A Stack-based Buffer Overflow vlnerability exists in the Tenda AC15 V15.03.05.18_multi device via... Critical Unreviewed
CVE-2021-44352 was published Dec 4, 2021
A missing bounds check in image blurring code prior to WhatsApp for Android v2.21.22.7 and... Critical Unreviewed
CVE-2021-24041 was published Dec 8, 2021
There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation... Critical Unreviewed
CVE-2021-37011 was published Dec 8, 2021
NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap... Critical Unreviewed
CVE-2021-43527 was published Dec 9, 2021
An out-of-bounds write vulnerability exists in the CMD_DEVICE_GET_SERVER_LIST_REQUEST... Critical Unreviewed
CVE-2021-21951 was published Dec 9, 2021
An out-of-bounds write vulnerability exists in the CMD_DEVICE_GET_SERVER_LIST_REQUEST... Critical Unreviewed
CVE-2021-21950 was published Dec 9, 2021
There is a Heap-based buffer overflow vulnerability in Huawei Smartphone.Successful exploitation... Critical Unreviewed
CVE-2021-37049 was published Dec 9, 2021
A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server's mod_cgi module... Critical Unreviewed
CVE-2021-20038 was published Dec 9, 2021
A stack-based buffer overflow in handle_request function in DHT.c in toxcore 0.1.9 through 0.1.11... Critical Unreviewed
CVE-2021-44847 was published Dec 14, 2021
stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a... Critical Unreviewed
CVE-2021-45078 was published Dec 16, 2021
In NfcTag::discoverTechnologies (activation) of NfcTag.cpp, there is a possible out of bounds... Critical Unreviewed
CVE-2021-0956 was published Dec 16, 2021
ProTip! Advisories are also available from the GraphQL API