Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,067
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,624
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,240 advisories

Loading
root privileges via buffer overflow in ordist command on SGI IRIX systems. High Unreviewed
CVE-1999-0029 was published Apr 30, 2022
It may be possible to have an extremely long aggregation pipeline in conjunction with a specific... High Unreviewed
CVE-2021-32040 was published Apr 13, 2022
By overlong input values an attacker may force overwrite of the internal program stack in SAP Web... High Unreviewed
CVE-2022-28772 was published Apr 13, 2022
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by a Stack... High Unreviewed
CVE-2022-24095 was published Mar 12, 2022
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by a Stack... High Unreviewed
CVE-2022-24094 was published Mar 12, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46565 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46638 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46643 was published Feb 19, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2022-24048 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed
CVE-2022-24049 was published Feb 19, 2022
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2022-24355 was published Feb 19, 2022
Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-0629 was published Feb 18, 2022
A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon... High Unreviewed
CVE-2022-23803 was published Feb 17, 2022
A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon... High Unreviewed
CVE-2022-23804 was published Feb 17, 2022
Stack overflow in PJSUA API when calling pjsua_recorder_create. An attacker-controlled 'filename'... Critical Unreviewed
CVE-2021-43300 was published Feb 17, 2022
Stack overflow in PJSUA API when calling pjsua_player_create. An attacker-controlled 'filename'... Critical Unreviewed
CVE-2021-43299 was published Feb 17, 2022
Stack overflow in PJSUA API when calling pjsua_playlist_create. An attacker-controlled ... Critical Unreviewed
CVE-2021-43301 was published Feb 17, 2022
Stack-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0408 was published Feb 12, 2022
A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon... High Unreviewed
CVE-2022-23946 was published Feb 12, 2022
A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon... High Unreviewed
CVE-2022-23947 was published Feb 12, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20700 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20701 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... High Unreviewed
CVE-2022-20703 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20699 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20708 was published Feb 11, 2022
ProTip! Advisories are also available from the GraphQL API