GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,823 advisories
Filter by severity
In atf (spm), there is a possible out of bounds write due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2022-20063
was published
Apr 12, 2022
During startup, a graphics driver with an unexpected name could lead to a stack-buffer overflow...
Moderate
Unreviewed
CVE-2022-40961
was published
Dec 22, 2022
Wasm3 0.5.0 has a heap-based buffer overflow in NewCodePage in m3_code.c (called indirectly from...
Moderate
Unreviewed
CVE-2022-28966
was published
Apr 17, 2022
rtl_433 21.12 was discovered to contain a stack overflow in the function acurite_00275rm_decode...
Moderate
Unreviewed
CVE-2022-27419
was published
Apr 13, 2022
An exploitable vulnerability exists in the way Pixar OpenUSD 20.05 handles file offsets in binary...
Moderate
Unreviewed
CVE-2020-13495
was published
Apr 19, 2022
A denial of service vulnerability was reported in Lenovo PCManager prior to version 4.0.20.10282...
Moderate
Unreviewed
CVE-2021-3721
was published
Apr 23, 2022
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.8. The bug causes...
Moderate
Unreviewed
CVE-2022-1383
was published
Apr 19, 2022
A malformed input file can lead to a segfault due to an out of bounds array access in...
Moderate
Unreviewed
CVE-2020-25713
was published
May 24, 2022
xpdf 4.03 has heap buffer overflow in the function readXRefTable located in XRef.cc. An attacker...
Moderate
Unreviewed
CVE-2022-27135
was published
Apr 26, 2022
Heap-based buffer overflow in Oracle MySQL 5.5.19 and other versions through 5.5.28, and MariaDB...
Moderate
Unreviewed
CVE-2012-5612
was published
May 17, 2022
In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (libraw...
Moderate
Unreviewed
CVE-2020-35530
was published
Sep 2, 2022
A buffer overflow vulnerability in image_render_color_thresh() in base/gxicolor.c of Artifex...
Moderate
Unreviewed
CVE-2020-16304
was published
May 24, 2022
A buffer overflow vulnerability in pcx_write_rle() in contrib/japanese/gdev10v.c of Artifex...
Moderate
Unreviewed
CVE-2020-16305
was published
May 24, 2022
A buffer overflow vulnerability in lxm5700m_print_page() in devices/gdevlxm.c of Artifex Software...
Moderate
Unreviewed
CVE-2020-16309
was published
May 24, 2022
An exploitable remote code execution vulnerability exists in the iw_webs configuration parsing...
Moderate
Unreviewed
CVE-2019-5153
was published
May 24, 2022
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds write in...
Moderate
Unreviewed
CVE-2020-11764
was published
May 24, 2022
A buffer overflow vulnerability in GetNumSameData() in contrib/lips4/gdevlips.c of Artifex...
Moderate
Unreviewed
CVE-2020-17538
was published
May 24, 2022
A heap-based Buffer Overflow Vulnerability exists FFmpeg 4.2 at libavfilter/vf_vmafmotion.c in...
Moderate
Unreviewed
CVE-2020-22033
was published
May 24, 2022
Stack overflow vulnerability in parse_equality Cesanta MJS 1.20.1, allows remote attackers to...
Moderate
Unreviewed
CVE-2020-36375
was published
May 24, 2022
Stack overflow vulnerability in parse_comparison Cesanta MJS 1.20.1, allows remote attackers to...
Moderate
Unreviewed
CVE-2020-36374
was published
May 24, 2022
Stack overflow vulnerability in parse_statement_list Cesanta MJS 1.20.1, allows remote attackers...
Moderate
Unreviewed
CVE-2020-36369
was published
May 24, 2022
Stack overflow vulnerability in parse_shifts Cesanta MJS 1.20.1, allows remote attackers to cause...
Moderate
Unreviewed
CVE-2020-36373
was published
May 24, 2022
A buffer overflow vulnerability in p_print_image() in devices/gdevcdj.c of Artifex Software...
Moderate
Unreviewed
CVE-2020-16308
was published
May 24, 2022
A null pointer deference issue exists in GNU LibreDWG 0.10 via get_bmp ../../programs/dwgbmp.c:164.
Moderate
Unreviewed
CVE-2020-21834
was published
May 24, 2022
A flaw was found in libebml before 1.4.2. A heap overflow bug exists in the implementation of...
Moderate
Unreviewed
CVE-2021-3405
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API