GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,024
Maven
5,000+
npm
3,731
NuGet
662
pip
3,407
Pub
12
RubyGems
891
Rust
864
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
481 advisories
Filter by severity
An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in...
Critical
Unreviewed
CVE-2021-4048
was published
Dec 9, 2021
There is an Out-of-bounds read vulnerability in Huawei Smartphone.Successful exploitation of this...
Critical
Unreviewed
CVE-2021-37051
was published
Dec 9, 2021
A missing bound check in RTCP flag parsing code prior to WhatsApp for Android v2.21.23.2,...
Critical
Unreviewed
CVE-2021-24043
was published
Feb 8, 2022
Out-of-bounds Read in Homebrew mruby prior to 3.2.
Critical
Unreviewed
CVE-2022-0525
was published
Feb 10, 2022
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply...
Critical
Unreviewed
CVE-2022-23096
was published
Feb 10, 2022
An issue was discovered in the DNS proxy in Connman through 1.40. forward_dns_reply mishandles a...
Critical
Unreviewed
CVE-2022-23097
was published
Feb 10, 2022
Read out-of-bounds in PJSUA API when calling pjsua_recorder_create. An attacker-controlled ...
Critical
Unreviewed
CVE-2021-43302
was published
Feb 17, 2022
Out-of-bounds Read in Homebrew mruby prior to 3.2.
Critical
Unreviewed
CVE-2022-0623
was published
Feb 18, 2022
Out-of-bounds Read in GitHub repository mruby/mruby prior to 3.2.
Critical
Unreviewed
CVE-2022-0717
was published
Feb 24, 2022
There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this...
Critical
Unreviewed
CVE-2021-40050
was published
Mar 11, 2022
Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of-bounds read in the function...
Critical
Unreviewed
CVE-2021-33293
was published
Mar 11, 2022
Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component...
Critical
Unreviewed
CVE-2022-26280
was published
Mar 30, 2022
Possible out of bound read due to improper validation of IE length during SSID IE parse when...
Critical
Unreviewed
CVE-2021-35088
was published
Apr 2, 2022
An Out of Bounds read may potentially occur while processing an IBSS beacon, in Snapdragon Auto,...
Critical
Unreviewed
CVE-2021-35117
was published
Apr 2, 2022
A remote code execution vulnerability due to incomplete check for 'xheader_decode_path_record'...
Critical
Unreviewed
CVE-2021-26623
was published
Apr 3, 2022
singlevar in lparser.c in Lua through 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a...
Critical
Unreviewed
CVE-2022-28805
was published
Apr 9, 2022
Out-of-bounds Read in mrb_get_args in GitHub repository mruby/mruby prior to 3.2. Possible...
Critical
Unreviewed
CVE-2022-1276
was published
Apr 11, 2022
Out-of-bounds read in `r_bin_ne_get_relocs` function in GitHub repository radareorg/radare2 prior...
Critical
Unreviewed
CVE-2022-1296
was published
Apr 12, 2022
Out-of-bounds Read in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2...
Critical
Unreviewed
CVE-2022-1297
was published
Apr 12, 2022
A flaw was found in sox 14.4.1. The lsx_adpcm_init function within libsox leads to a global...
Critical
Unreviewed
CVE-2021-3643
was published
May 3, 2022
Read access violation in the III_dequantize_sample function in mpglibDBL/layer3.c in mp3gain...
Critical
Unreviewed
CVE-2021-34085
was published
May 12, 2022
In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has...
Critical
Unreviewed
CVE-2019-9169
was published
May 13, 2022
A programming error exists in a way Randombit Botan cryptographic library version 2.0.1...
Critical
Unreviewed
CVE-2017-2801
was published
May 13, 2022
An exploitable information leak/denial of service vulnerability exists in the libevm (Ethereum...
Critical
Unreviewed
CVE-2017-14457
was published
May 13, 2022
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6 (in 4.1.x),...
Critical
Unreviewed
CVE-2018-11058
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API