Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,342
Erlang
31
GitHub Actions
22
Go
2,106
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

8,464 advisories

Loading
Access of Memory Location Before Start of Buffer in NPM radare2.js prior to 5.6.2. High Unreviewed
CVE-2022-0522 was published Feb 9, 2022
Buffer Access with Incorrect Length Value in GitHub repository radareorg/radare2 prior to 5.6.2. High Unreviewed
CVE-2022-0519 was published Feb 9, 2022
Expired Pointer Dereference in NPM radare2.js prior to 5.6.2. High Unreviewed
CVE-2022-0523 was published Feb 9, 2022
Access of Memory Location After End of Buffer in GitHub repository radareorg/radare2 prior to 5.6.2. High Unreviewed
CVE-2022-0521 was published Feb 9, 2022
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat High
CVE-2020-13934 was published for org.apache.tomcat:tomcat (Maven) Feb 8, 2022
Access of Memory Location Before Start of Buffer in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0351 was published Jan 26, 2022
A Memory Corruption Vulnerability in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 and... High Unreviewed
CVE-2021-40167 was published Jan 26, 2022
An untrusted pointer dereference in mrb_vm_exec() of mruby v3.0.0 can lead to a segmentation... High Unreviewed
CVE-2021-46020 was published Jan 15, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34874 was published Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34934 was published Jan 14, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE... High Unreviewed
CVE-2022-21852 was published Jan 12, 2022
The bone voice ID TA has a vulnerability in calculating the buffer length,Successful exploitation... High Unreviewed
CVE-2021-40027 was published Jan 11, 2022
A memory corruption issue was addressed with improved memory handling. This issue is fixed in... High Unreviewed
CVE-2017-13835 was published Dec 24, 2021
A memory corruption issue was addressed with improved memory handling. This issue is fixed in... High Unreviewed
CVE-2017-13906 was published Dec 24, 2021
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability... High Unreviewed
CVE-2021-40783 was published Dec 21, 2021
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability... High Unreviewed
CVE-2021-40784 was published Dec 21, 2021
A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of... High Unreviewed
CVE-2021-4009 was published Dec 18, 2021
A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of... High Unreviewed
CVE-2021-4008 was published Dec 18, 2021
A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of... High Unreviewed
CVE-2021-4010 was published Dec 18, 2021
A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of... High Unreviewed
CVE-2021-4011 was published Dec 18, 2021
Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to... High Unreviewed
CVE-2021-40772 was published Nov 23, 2021
Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to... High Unreviewed
CVE-2021-42738 was published Nov 23, 2021
Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to... High Unreviewed
CVE-2021-42737 was published Nov 23, 2021
Adobe InCopy version 16.4 (and earlier) is affected by a memory corruption vulnerability due to... High Unreviewed
CVE-2021-43015 was published Nov 23, 2021
A code execution vulnerability exists in the dwgCompressor::decompress18() functionality of... High Unreviewed
CVE-2021-21898 was published Nov 20, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database