GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
87 advisories
Filter by severity
There is an incorrect buffer size calculation vulnerability in the video framework. Successful...
High
Unreviewed
CVE-2021-40048
was published
Mar 11, 2022
An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). Using...
High
Unreviewed
CVE-2021-44510
was published
Apr 16, 2022
An exploitable arbitrary write vulnerability exists in the open document format parser of the...
High
Unreviewed
CVE-2018-4038
was published
May 13, 2022
An out-of-bounds write vulnerability exists in the SGI format buffer size processing...
High
Unreviewed
CVE-2021-21782
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the SGI Format Buffer Size Processing...
High
Unreviewed
CVE-2021-21776
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the PSD Header processing functionality of...
High
Unreviewed
CVE-2020-13585
was published
May 24, 2022
A buffer size validation vulnerability in the overlayd service of Juniper Networks Junos OS may...
Critical
Unreviewed
CVE-2021-0254
was published
May 24, 2022
There is an incorrect buffer size calculation vulnerability in the video framework. Successful...
High
Unreviewed
CVE-2021-40052
was published
Mar 11, 2022
An exploitable code execution vulnerability exists in the file system checking functionality of...
Moderate
Unreviewed
CVE-2020-6070
was published
May 24, 2022
On Juniper Networks MX Series with MS-MIC or MS-MPC card configured with NAT64 configuration,...
Moderate
Unreviewed
CVE-2020-1680
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the JPG sof_nb_comp header processing...
High
Unreviewed
CVE-2021-21793
was published
May 24, 2022
Due to insufficient validation of ELF headers, an Incorrect Calculation of Buffer Size can occur...
High
Unreviewed
CVE-2021-35134
was published
Sep 3, 2022
Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not...
High
Unreviewed
CVE-2020-11240
was published
May 24, 2022
There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of...
High
Unreviewed
CVE-2021-22391
was published
May 24, 2022
There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of...
High
Unreviewed
CVE-2021-22392
was published
May 24, 2022
There is an Incorrect Calculation of Buffer Size Vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-22415
was published
May 24, 2022
Incorrect calculation of buffer size vulnerability in Peleton TTR01 up to and including PTV55G...
Moderate
Unreviewed
CVE-2021-40526
was published
May 24, 2022
In typec, there is a possible out of bounds write due to an incorrect calculation of buffer size....
Moderate
Unreviewed
CVE-2022-32618
was published
Nov 9, 2022
In typec, there is a possible out of bounds write due to an incorrect calculation of buffer size....
Moderate
Unreviewed
CVE-2022-32617
was published
Nov 9, 2022
A flaw was found in the Linux kernel before 5.9-rc4. A failure of the file system metadata...
Moderate
Unreviewed
CVE-2020-14385
was published
May 24, 2022
A memory corruption vulnerability exists in the ioca_mys_rgb_allocate functionality of Accusoft...
Moderate
Unreviewed
CVE-2022-22137
was published
May 4, 2022
All versions of GurumDDS improperly calculate the size to be used when allocating the buffer,...
Critical
Unreviewed
CVE-2021-38423
was published
May 6, 2022
RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6.1.0 not correctly...
Critical
Unreviewed
CVE-2021-38435
was published
May 6, 2022
The asn1_get_bit_der function in GNU Libtasn1 before 3.6 does not properly report an error when a...
High
Unreviewed
CVE-2014-3468
was published
May 13, 2022
An elevation of privilege vulnerability exists in Windows when LDAP request buffer lengths are...
High
Unreviewed
CVE-2017-0166
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API