GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
515 advisories
Filter by severity
xterm through Patch 370, when Sixel support is enabled, allows attackers to trigger a buffer...
Moderate
Unreviewed
CVE-2022-24130
was published
Feb 8, 2022
Possible buffer overflow due to improper data validation of external commands sent via DIAG...
Moderate
Unreviewed
CVE-2021-30331
was published
Apr 2, 2022
A potential buffer overflow vulnerability was identified in some internal functions of Zyxel...
Moderate
Unreviewed
CVE-2022-26414
was published
Apr 12, 2022
A denial of service vulnerability was reported in Lenovo Thin Installer prior to version 1.3.0039...
Moderate
Unreviewed
CVE-2022-0636
was published
Apr 23, 2022
An exploitable buffer overflow vulnerability exists in the UPnP implementation used by the Foscam...
Moderate
Unreviewed
CVE-2017-2879
was published
May 13, 2022
Multiple buffer overflows in STLport 5.0.2 might allow local users to execute arbitrary code via ...
Moderate
Unreviewed
CVE-2006-0963
was published
May 1, 2022
Multiple buffer overflows in STLport before 5.0.3 allow remote attackers to execute arbitrary...
Moderate
Unreviewed
CVE-2007-0803
was published
May 1, 2022
The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0...
Moderate
Unreviewed
CVE-2014-0195
was published
May 14, 2022
An exploitable remote code execution vulnerability exists in the iw_webs configuration parsing...
Moderate
Unreviewed
CVE-2019-5153
was published
May 24, 2022
A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex...
Moderate
Unreviewed
CVE-2020-16302
was published
May 24, 2022
A crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value in NTFS-3G through...
Moderate
Unreviewed
CVE-2022-30784
was published
May 27, 2022
Das U-Boot 2022.01 has a Buffer Overflow.
Moderate
Unreviewed
CVE-2022-30552
was published
Jun 9, 2022
Realtek USB driver has a buffer overflow vulnerability due to insufficient parameter length...
Moderate
Unreviewed
CVE-2022-21742
was published
Jun 21, 2022
Multiple CODESYS products are affected to a buffer overflow.A low privileged remote attacker may...
Moderate
Unreviewed
CVE-2022-32140
was published
Jun 25, 2022
The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability...
Moderate
Unreviewed
CVE-2022-34740
was published
Jul 13, 2022
The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability...
Moderate
Unreviewed
CVE-2022-34741
was published
Jul 13, 2022
GtkRadiant v1.6.6 was discovered to contain a buffer overflow via the component q3map2. This...
Moderate
Unreviewed
CVE-2022-32406
was published
Jul 15, 2022
A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack...
Moderate
Unreviewed
CVE-2020-10713
was published
May 24, 2022
Buffer overflow vulnerability in function AP4_MemoryByteStream::WritePartial in mp42aac in Bento4...
Moderate
Unreviewed
CVE-2022-40438
was published
Sep 15, 2022
A vulnerability has been identified in OpenV2G (V0.9.4). The OpenV2G EXI parsing feature is...
Moderate
Unreviewed
CVE-2022-27242
was published
May 21, 2022
A buffer overflow vulnerability in Lenovo Smart Standby Driver prior to version 4.1.50.0 could...
Moderate
Unreviewed
CVE-2022-1110
was published
May 19, 2022
lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.
Moderate
Unreviewed
CVE-2019-15166
was published
May 24, 2022
Possible stack overflow when an index equal to io buffer size is accessed in camera module in...
Moderate
Unreviewed
CVE-2019-10502
was published
May 24, 2022
A stack corruption bug was found in libtpms in versions before 0.7.2 and before 0.8.0 while...
Moderate
Unreviewed
CVE-2021-3569
was published
May 24, 2022
A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba...
Moderate
Unreviewed
CVE-2020-10704
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API