GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,376 advisories
Filter by severity
There is a Memory out-of-bounds access vulnerability in Huawei Smartphone.Successful exploitation...
Critical
Unreviewed
CVE-2021-37002
was published
May 24, 2022
An improper input validation vulnerability in libsapeextractor library prior to SMR Sep-2021...
Critical
Unreviewed
CVE-2021-25449
was published
May 24, 2022
A buffer overflow may result in arbitrary code execution. This issue is fixed in macOS Big Sur 11...
Critical
Unreviewed
CVE-2021-1770
was published
May 24, 2022
A VULNERABILITY_CLASS vulnerability exists in the FEATURE functionality of Disc Soft Ltd Deamon...
Critical
Unreviewed
CVE-2021-21832
was published
May 24, 2022
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows memory corruption...
Critical
Unreviewed
CVE-2021-38568
was published
May 24, 2022
There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful...
Critical
Unreviewed
CVE-2021-22390
was published
May 24, 2022
There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful...
Critical
Unreviewed
CVE-2021-22438
was published
May 24, 2022
There is an Integer Overflow Vulnerability in Huawei Smartphone. Successful exploitation of these...
Critical
Unreviewed
CVE-2021-22323
was published
May 24, 2022
There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful...
Critical
Unreviewed
CVE-2021-22348
was published
May 24, 2022
FATEK Automation WinProladder Versions 3.30 and prior do not properly restrict operations within...
Critical
Unreviewed
CVE-2021-32992
was published
May 24, 2022
An improper input validation vulnerability in scmn_mfal_read() in libsapeextractor library prior...
Critical
Unreviewed
CVE-2021-25383
was published
May 24, 2022
An improper input validation vulnerability in sdfffd_parse_chunk_PROP() in libsdffextractor...
Critical
Unreviewed
CVE-2021-25385
was published
May 24, 2022
An improper input validation vulnerability in sflacfd_get_frm() in libsflacextractor library...
Critical
Unreviewed
CVE-2021-25387
was published
May 24, 2022
An improper input validation vulnerability in sdfffd_parse_chunk_FVER() in libsdffextractor...
Critical
Unreviewed
CVE-2021-25386
was published
May 24, 2022
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2),...
Critical
Unreviewed
CVE-2020-15782
was published
May 24, 2022
A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead...
Critical
Unreviewed
CVE-2021-30498
was published
May 24, 2022
A flaw was found in libcaca. A buffer overflow of export.c in function export_troff might lead to...
Critical
Unreviewed
CVE-2021-30499
was published
May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow was found in...
Critical
Unreviewed
CVE-2018-25011
was published
May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function...
Critical
Unreviewed
CVE-2020-36328
was published
May 24, 2022
Exim 4 before 4.94.2 allows Buffer Underwrite that may result in unauthenticated remote attackers...
Critical
Unreviewed
CVE-2020-28024
was published
May 24, 2022
Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory...
Critical
Unreviewed
CVE-2020-28022
was published
May 24, 2022
A heap memory corruption problem (use after free) can be triggered in libgetdata v0.10.0 when...
Critical
Unreviewed
CVE-2021-20204
was published
May 24, 2022
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during...
Critical
Unreviewed
CVE-2021-32020
was published
May 24, 2022
A vulnerability has been identified in Nucleus 4 (All versions < V4.1.0), Nucleus NET (All...
Critical
Unreviewed
CVE-2020-27738
was published
May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote...
Critical
Unreviewed
CVE-2021-1479
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API