Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

618 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-31483 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-31478 was published May 24, 2022
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to V2.1.0-DEV. High Unreviewed
CVE-2023-0760 was published Feb 9, 2023
The affected product is vulnerable to a heap-based buffer overflow via uninitialized pointer,... High Unreviewed
CVE-2022-30540 was published Jun 3, 2022
A heap out-of-bounds memory write exists in FFMPEG since version 5.1. The size calculation in ... High Unreviewed
CVE-2022-2566 was published Sep 25, 2022
DOS / potential heap overwrite in mkv demuxing using zlib decompression. Integer overflow in... High Unreviewed
CVE-2022-1922 was published Jul 20, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21947 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft... High Unreviewed
CVE-2021-21943 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of... High Unreviewed
CVE-2021-21914 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic... High Unreviewed
CVE-2021-21948 was published Apr 15, 2022
NHI’s health insurance web service component has insufficient validation for input string length,... High Unreviewed
CVE-2021-45918 was published Jun 21, 2022
DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow... High Unreviewed
CVE-2022-1925 was published Jul 20, 2022
DOS / potential heap overwrite in mkv demuxing using lzo decompression. Integer overflow in... High Unreviewed
CVE-2022-1924 was published Jul 20, 2022
DOS / potential heap overwrite in mkv demuxing using bzip decompression. Integer overflow in... High Unreviewed
CVE-2022-1923 was published Jul 20, 2022
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes... High Unreviewed
CVE-2022-1714 was published May 14, 2022
A vulnerability has been identified in JT2Go (All versions < V14.1.0.4), Teamcenter Visualization... High Unreviewed
CVE-2022-39136 was published Nov 8, 2022
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of... High Unreviewed
CVE-2022-43599 was published Dec 23, 2022
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of... High Unreviewed
CVE-2022-43601 was published Dec 23, 2022
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of... High Unreviewed
CVE-2022-43600 was published Dec 23, 2022
Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality... High Unreviewed
CVE-2022-43597 was published Dec 23, 2022
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of... High Unreviewed
CVE-2022-43602 was published Dec 23, 2022
Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality... High Unreviewed
CVE-2022-43598 was published Dec 23, 2022
A vulnerability, which was classified as problematic, was found in GPAC 2.3-DEV-rev35-gbbca86917... High Unreviewed
CVE-2023-1448 was published Mar 17, 2023
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to v2.3.0-DEV. High Unreviewed
CVE-2023-0819 was published Feb 14, 2023
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3.0-DEV. High Unreviewed
CVE-2023-0866 was published Feb 16, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database