GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,329 advisories
Filter by severity
OpenSource Moddable v10.5.0 was discovered to contain buffer over-read in the fxDebugThrow...
High
Unreviewed
CVE-2021-29328
was published
Nov 20, 2021
An Out-of-Bounds Read vulnerability exists when reading a U3D file using Open Design Alliance PRC...
High
Unreviewed
CVE-2021-43581
was published
Nov 23, 2021
There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37090
was published
Dec 8, 2021
There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37076
was published
Dec 8, 2021
There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37070
was published
Dec 8, 2021
There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37066
was published
Dec 8, 2021
A vulnerability has been identified in JT Utilities (All versions < V12.8.1.1), JTTK (All...
High
Unreviewed
CVE-2021-44450
was published
Dec 15, 2021
A vulnerability has been identified in JT Utilities (All versions < V13.1.1.0), JTTK (All...
High
Unreviewed
CVE-2021-44439
was published
Dec 15, 2021
In WT_Interpolate of eas_wtengine.c, there is a possible out of bounds read due to a missing...
High
Unreviewed
CVE-2021-1002
was published
Dec 16, 2021
In rw_t4t_sm_detect_ndef of rw_t4t.cc, there is a possible out of bounds read due to an incorrect...
High
Unreviewed
CVE-2021-0925
was published
Dec 16, 2021
In xhci_vendor_get_ops of xhci.c, there is a possible out of bounds read due to a missing bounds...
High
Unreviewed
CVE-2021-0924
was published
Dec 16, 2021
In WT_InterpolateNoLoop of eas_wtengine.c, there is a possible out of bounds read due to an...
High
Unreviewed
CVE-2021-0650
was published
Dec 16, 2021
Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an...
High
Unreviewed
CVE-2021-38421
was published
Dec 21, 2021
An out-of-bounds read vulnerability exists when reading a TIF file using Open Design Alliance...
High
Unreviewed
CVE-2021-44860
was published
Dec 22, 2021
An out-of-bounds read vulnerability exists when reading a TGA file using Open Design Alliance...
High
Unreviewed
CVE-2021-44859
was published
Dec 22, 2021
An out-of-bounds read vulnerability exists when reading a BMP file using Open Design Alliance ...
High
Unreviewed
CVE-2021-44423
was published
Dec 22, 2021
A maliciously crafted PDF file prior to 9.0.7 may be forced to read beyond allocated boundaries...
High
Unreviewed
CVE-2021-40160
was published
Dec 24, 2021
In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11, there is an out-of...
High
Unreviewed
CVE-2021-45469
was published
Dec 24, 2021
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle...
High
Unreviewed
CVE-2021-37571
was published
Dec 27, 2021
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle...
High
Unreviewed
CVE-2021-37570
was published
Dec 27, 2021
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle...
High
Unreviewed
CVE-2021-37567
was published
Dec 27, 2021
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle...
High
Unreviewed
CVE-2021-37565
was published
Dec 27, 2021
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle...
High
Unreviewed
CVE-2021-37564
was published
Dec 27, 2021
ProTip!
Advisories are also available from the
GraphQL API