Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

247 advisories

Loading
A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization... Moderate Unreviewed
CVE-2021-44003 was published Dec 15, 2021
When parsing a file that is submitted to the DPDecoder service as a job, the R3D SDK will... Critical Unreviewed
CVE-2021-40418 was published Dec 23, 2021
In seninf driver, there is a possible information disclosure due to uninitialized data. This... Moderate Unreviewed
CVE-2022-20018 was published Jan 5, 2022
In sec_SHA256_Transform of sha256_core.c, there is a possible way to read heap data due to... Moderate Unreviewed
CVE-2021-39680 was published Jan 15, 2022
An out-of-bounds write vulnerability exists in the device TestEmail functionality of reolink RLC... Critical Unreviewed
CVE-2022-21217 was published Jan 29, 2022
In code generated by aidl_const_expressions.cpp, there is a possible out of bounds read due to... Moderate Unreviewed
CVE-2021-39671 was published Feb 12, 2022
Uninitialized use in File API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to... High Unreviewed
CVE-2022-0115 was published Feb 13, 2022
An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of... Moderate Unreviewed
CVE-2021-21966 was published Feb 17, 2022
A kernel information leak flaw was identified in the scsi_ioctl function in drivers/scsi... Moderate Unreviewed
CVE-2022-0494 was published Mar 26, 2022
Microsoft Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code by... High Unreviewed
CVE-2007-1751 was published May 1, 2022
The Kerberos 4 support in KDC in MIT Kerberos 5 (krb5kdc) does not properly clear the unused... Moderate Unreviewed
CVE-2008-0063 was published May 1, 2022
Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office... High Unreviewed
CVE-2008-0081 was published May 1, 2022
Mozilla Firefox 3 before 3.0.1 on Mac OS X allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2008-2934 was published May 1, 2022
Microsoft Internet Explorer 6 does not properly handle errors related to using the... High Unreviewed
CVE-2008-3475 was published May 2, 2022
sockethandler.cpp in HTTP Antivirus Proxy (HAVP) 0.88 allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2008-3688 was published May 2, 2022
Opera before 9.52 on Windows, Linux, FreeBSD, and Solaris, when processing custom shortcut and... High Unreviewed
CVE-2008-4197 was published May 2, 2022
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize... Moderate Unreviewed
CVE-2009-0949 was published May 2, 2022
Microsoft Internet Explorer 7 for Windows XP SP2 and SP3; 7 for Server 2003 SP2; 7 for Vista Gold... High Unreviewed
CVE-2009-1529 was published May 2, 2022
The Linux kernel 2.6.0 through 2.6.30.4, and 2.4.4 through 2.4.37.4, does not initialize all... High Unreviewed
CVE-2009-2692 was published May 2, 2022
In camera, there is a possible information disclosure due to uninitialized data. This could lead... Moderate Unreviewed
CVE-2022-20096 was published May 4, 2022
The function wav_format_write in libwav.c in libwav through 2017-04-20 has an Use of... High Unreviewed
CVE-2022-28488 was published May 5, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5, and 14.1.x... High Unreviewed
CVE-2022-26370 was published May 6, 2022
In private_handle_t of mali_gralloc_buffer.h, there is a possible information disclosure due to... Moderate Unreviewed
CVE-2022-20119 was published May 11, 2022
In mmc_blk_read_single of block.c, there is a possible way to read kernel heap memory due to... Moderate Unreviewed
CVE-2022-20008 was published May 11, 2022
An exploitable kernel memory disclosure vulnerability exists in the 0x8200E804 IOCTL handler... Moderate Unreviewed
CVE-2018-3989 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database