Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

282 advisories

Loading
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier)... Low Unreviewed
CVE-2021-21042 was published May 24, 2022
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier)... Low Unreviewed
CVE-2021-21034 was published May 24, 2022
A vulnerability in an Trend Micro Apex One dll may allow an attacker to manipulate it to cause an... Low Unreviewed
CVE-2020-24558 was published May 24, 2022
njs through 0.4.3, used in NGINX, has an out-of-bounds read in njs_json_stringify_iterator in... Low Unreviewed
CVE-2020-24348 was published May 24, 2022
njs through 0.4.3, used in NGINX, has an out-of-bounds read in njs_lvlhsh_level_find in... Low Unreviewed
CVE-2020-24347 was published May 24, 2022
A buffer over-read flaw was found in RH kernel versions before 5.0 in crypto_authenc_extractkeys... Low Unreviewed
CVE-2020-10769 was published May 24, 2022
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before... Low Unreviewed
CVE-2020-3965 was published May 24, 2022
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to... Low Unreviewed
CVE-2020-12863 was published May 24, 2022
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to... Low Unreviewed
CVE-2020-12864 was published May 24, 2022
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to... Low Unreviewed
CVE-2020-12862 was published May 24, 2022
hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing... Low Unreviewed
CVE-2020-13791 was published May 24, 2022
Buffer over-read in ADSP parse function due to lack of check for availability of sufficient data... Low Unreviewed
CVE-2019-14038 was published May 24, 2022
In QEMU 4.2.0, megasas_lookup_frame in hw/scsi/megasas.c has an out-of-bounds read via a crafted... Low Unreviewed
CVE-2020-13362 was published May 24, 2022
sd_wp_addr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of... Low Unreviewed
CVE-2020-13253 was published May 24, 2022
An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has... Low Unreviewed
CVE-2020-13397 was published May 24, 2022
An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has... Low Unreviewed
CVE-2020-13396 was published May 24, 2022
A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is... Low Unreviewed
CVE-2020-10724 was published May 24, 2022
In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a... Low Unreviewed
CVE-2020-0093 was published May 24, 2022
In f2fs_xattr_generic_list of xattr.c, there is a possible out of bounds read due to a missing... Low Unreviewed
CVE-2020-0067 was published May 24, 2022
In crus_afe_get_param of msm-cirrus-playback.c, there is a possible out of bounds read due to an... Low Unreviewed
CVE-2020-0068 was published May 24, 2022
Lack of boundary checks for data offsets received from HLOS can lead to out-of-bound read in... Low Unreviewed
CVE-2019-10574 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Low Unreviewed
CVE-2020-2743 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Low Unreviewed
CVE-2020-2748 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Low Unreviewed
CVE-2020-2741 was published May 24, 2022
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component... Low Unreviewed
CVE-2020-0987 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database