GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
483 advisories
Filter by severity
Adobe Acrobat and Reader versions 2017.012.20098 and earlier, 2017.011.30066 and earlier, 2015...
Critical
Unreviewed
CVE-2017-11307
was published
May 13, 2022
Adobe Acrobat and Reader versions 2017.012.20098 and earlier, 2017.011.30066 and earlier, 2015...
Critical
Unreviewed
CVE-2017-11240
was published
May 13, 2022
URI_FUNC() in UriParse.c in uriparser before 0.9.1 has an out-of-bounds read (in uriParse*Ex*...
Critical
Unreviewed
CVE-2018-20721
was published
May 13, 2022
The name_parse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have...
Critical
Unreviewed
CVE-2016-10195
was published
May 13, 2022
An issue, also known as DW201703-005, was discovered in libdwarf 2017-03-21. A heap-based buffer...
Critical
Unreviewed
CVE-2017-9053
was published
May 13, 2022
An issue, also known as DW201703-002, was discovered in libdwarf 2017-03-21. In...
Critical
Unreviewed
CVE-2017-9054
was published
May 13, 2022
An issue, also known as DW201703-001, was discovered in libdwarf 2017-03-21. In dwarf_formsdata()...
Critical
Unreviewed
CVE-2017-9055
was published
May 13, 2022
An out-of-bounds read in V8 in Google Chrome prior to 57.0.2987.133 for Linux, Windows, and Mac,...
Critical
Unreviewed
CVE-2017-5053
was published
May 13, 2022
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6 (in 4.1.x),...
Critical
Unreviewed
CVE-2018-11058
was published
May 13, 2022
An exploitable information leak/denial of service vulnerability exists in the libevm (Ethereum...
Critical
Unreviewed
CVE-2017-14457
was published
May 13, 2022
A programming error exists in a way Randombit Botan cryptographic library version 2.0.1...
Critical
Unreviewed
CVE-2017-2801
was published
May 13, 2022
In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has...
Critical
Unreviewed
CVE-2019-9169
was published
May 13, 2022
Read access violation in the III_dequantize_sample function in mpglibDBL/layer3.c in mp3gain...
Critical
Unreviewed
CVE-2021-34085
was published
May 12, 2022
A flaw was found in sox 14.4.1. The lsx_adpcm_init function within libsox leads to a global...
Critical
Unreviewed
CVE-2021-3643
was published
May 3, 2022
Out-of-bounds read in `r_bin_ne_get_relocs` function in GitHub repository radareorg/radare2 prior...
Critical
Unreviewed
CVE-2022-1296
was published
Apr 12, 2022
Out-of-bounds Read in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2...
Critical
Unreviewed
CVE-2022-1297
was published
Apr 12, 2022
Out-of-bounds Read in mrb_get_args in GitHub repository mruby/mruby prior to 3.2. Possible...
Critical
Unreviewed
CVE-2022-1276
was published
Apr 11, 2022
singlevar in lparser.c in Lua through 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a...
Critical
Unreviewed
CVE-2022-28805
was published
Apr 9, 2022
A remote code execution vulnerability due to incomplete check for 'xheader_decode_path_record'...
Critical
Unreviewed
CVE-2021-26623
was published
Apr 3, 2022
Possible out of bound read due to improper validation of IE length during SSID IE parse when...
Critical
Unreviewed
CVE-2021-35088
was published
Apr 2, 2022
An Out of Bounds read may potentially occur while processing an IBSS beacon, in Snapdragon Auto,...
Critical
Unreviewed
CVE-2021-35117
was published
Apr 2, 2022
Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component...
Critical
Unreviewed
CVE-2022-26280
was published
Mar 30, 2022
Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of-bounds read in the function...
Critical
Unreviewed
CVE-2021-33293
was published
Mar 11, 2022
There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this...
Critical
Unreviewed
CVE-2021-40050
was published
Mar 11, 2022
Out-of-bounds Read in GitHub repository mruby/mruby prior to 3.2.
Critical
Unreviewed
CVE-2022-0717
was published
Feb 24, 2022
ProTip!
Advisories are also available from the
GraphQL API