GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
102
GitHub Actions
54
Go
4,338
Maven
5,000+
npm
5,000+
NuGet
1,032
pip
5,000+
Pub
13
RubyGems
1,122
Rust
1,498
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,386 advisories
Filter by severity
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image...
High
Unreviewed
CVE-2021-21947
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic...
High
Unreviewed
CVE-2021-21948
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft...
High
Unreviewed
CVE-2021-21943
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of...
High
Unreviewed
CVE-2021-21914
was published
Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image...
High
Unreviewed
CVE-2021-21946
was published
Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft...
High
Unreviewed
CVE-2021-21945
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of...
High
Unreviewed
CVE-2021-40426
was published
Apr 15, 2022
The affected product is vulnerable to a heap-based buffer overflow, which may lead to code...
High
Unreviewed
CVE-2022-21214
was published
Apr 13, 2022
Heap buffer overflow in libr/bin/format/mach0/mach0.c in GitHub repository radareorg/radare2...
High
Unreviewed
CVE-2022-1240
was published
Apr 7, 2022
heap buffer overflow in get_one_sourceline in GitHub repository vim/vim prior to 8.2.
High
Unreviewed
CVE-2022-1160
was published
Mar 31, 2022
Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There...
High
Unreviewed
CVE-2021-43305
was published
Mar 16, 2022
Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There...
High
Unreviewed
CVE-2021-43304
was published
Mar 16, 2022
Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2.
High
Unreviewed
CVE-2022-0943
was published
Mar 15, 2022
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by an Heap...
High
Unreviewed
CVE-2022-24096
was published
Mar 12, 2022
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4.
High
Unreviewed
CVE-2022-0676
was published
Feb 23, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46577
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46603
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46605
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46606
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46653
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46648
was published
Feb 19, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of...
High
Unreviewed
CVE-2022-24052
was published
Feb 19, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2.
High
Unreviewed
CVE-2022-0407
was published
Feb 15, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2.
High
Unreviewed
CVE-2022-0392
was published
Feb 15, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2.
High
Unreviewed
CVE-2022-0417
was published
Feb 12, 2022
ProTip!
Advisories are also available from the
GraphQL API