Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

659 advisories

Loading
A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic... High Unreviewed
CVE-2021-21948 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of... High Unreviewed
CVE-2021-21914 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft... High Unreviewed
CVE-2021-21943 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21947 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21945 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21946 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of... High Unreviewed
CVE-2021-40426 was published Apr 15, 2022
The affected product is vulnerable to a heap-based buffer overflow, which may lead to code... High Unreviewed
CVE-2022-21214 was published Apr 13, 2022
Heap buffer overflow in libr/bin/format/mach0/mach0.c in GitHub repository radareorg/radare2... High Unreviewed
CVE-2022-1240 was published Apr 7, 2022
heap buffer overflow in get_one_sourceline in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-1160 was published Mar 31, 2022
Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-0943 was published Mar 15, 2022
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by an Heap... High Unreviewed
CVE-2022-24096 was published Mar 12, 2022
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4. High Unreviewed
CVE-2022-0676 was published Feb 23, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46577 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46603 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46606 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46605 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46653 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46648 was published Feb 19, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2022-24052 was published Feb 19, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0407 was published Feb 15, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0392 was published Feb 15, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0417 was published Feb 12, 2022
Heap-based Buffer Overflow in NPM radare2.js prior to 5.6.2. High Unreviewed
CVE-2022-0518 was published Feb 9, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0359 was published Jan 27, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database