Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,373
Erlang
33
GitHub Actions
22
Go
2,135
Maven
5,000+
npm
3,797
NuGet
687
pip
3,478
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+

12,882 advisories

Loading
A Denial of Service vulnerability exists in Binaryen 103 due to an Invalid memory address... Moderate Unreviewed
CVE-2021-45293 was published Dec 22, 2021
An out-of-bounds write vulnerability exists in the RS-274X aperture macro variables handling... Critical Unreviewed
CVE-2021-40393 was published Dec 23, 2021
A memory corruption issue was addressed with improved memory handling. This issue is fixed in... High Unreviewed
CVE-2017-13906 was published Dec 24, 2021
A memory corruption issue was addressed with improved memory handling. This issue is fixed in... High Unreviewed
CVE-2017-13835 was published Dec 24, 2021
In libvcodecdrv, there is a possible information disclosure due to a missing bounds check. This... Moderate Unreviewed
CVE-2022-20020 was published Jan 5, 2022
In libMtkOmxGsmDec, there is a possible information disclosure due to an incorrect bounds check.... Moderate Unreviewed
CVE-2022-20019 was published Jan 5, 2022
Use of a Broken or Risky Cryptographic Algorithm in crypto2 Critical
CVE-2021-45709 was published for crypto2 (Rust) Jan 6, 2022
A Denial of Service vulnerability exists in Binaryen 103. The program terminates with signal... Moderate Unreviewed
CVE-2021-46053 was published Jan 11, 2022
The bone voice ID TA has a vulnerability in calculating the buffer length,Successful exploitation... High Unreviewed
CVE-2021-40027 was published Jan 11, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE... High Unreviewed
CVE-2022-21852 was published Jan 12, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34934 was published Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34874 was published Jan 14, 2022
An untrusted pointer dereference in mrb_vm_exec() of mruby v3.0.0 can lead to a segmentation... High Unreviewed
CVE-2021-46020 was published Jan 15, 2022
GPAC v1.1.0 was discovered to contain an invalid memory address dereference via the function... Moderate Unreviewed
CVE-2021-45764 was published Jan 15, 2022
GPAC 1.1.0 was discovered to contain an invalid memory address dereference via the function... Moderate Unreviewed
CVE-2021-45767 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... Moderate Unreviewed
CVE-2021-45067 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... Moderate Unreviewed
CVE-2021-44712 was published Jan 15, 2022
GPAC v1.1.0 was discovered to contain an invalid memory address dereference via the function... Moderate Unreviewed
CVE-2021-45762 was published Jan 15, 2022
GPAC v1.1.0 was discovered to contain an invalid memory address dereference via the function... Moderate Unreviewed
CVE-2021-45760 was published Jan 15, 2022
NVIDIA Tegra kernel driver contains a vulnerability in NVIDIA NVDEC, where a user with high... Moderate Unreviewed
CVE-2021-34402 was published Jan 19, 2022
Moddable SDK v11.5.0 was discovered to contain an invalid memory access vulnerability via the... Moderate Unreviewed
CVE-2021-46333 was published Jan 21, 2022
A Memory Corruption Vulnerability in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 and... High Unreviewed
CVE-2021-40167 was published Jan 26, 2022
Access of Memory Location Before Start of Buffer in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0351 was published Jan 26, 2022
There is an Assertion ''ecma_object_is_typedarray (obj_p)'' failed at /jerry-core/ecma/operations... Moderate Unreviewed
CVE-2021-44992 was published Jan 26, 2022
In ASQ in Stormshield Network Security (SNS) 1.0.0 through 2.7.8, 2.8.0 through 2.16.0, 3.0.0... Critical Unreviewed
CVE-2021-31617 was published Feb 8, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database