GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,132
Erlang
29
GitHub Actions
19
Go
1,937
Maven
5,000+
npm
3,676
NuGet
642
pip
3,292
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
571 advisories
Filter by severity
curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point...
High
Unreviewed
CVE-2016-9586
was published
May 13, 2022
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer...
High
Unreviewed
CVE-2018-1123
was published
May 13, 2022
The Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer...
High
Unreviewed
CVE-2018-14653
was published
May 13, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012...
High
Unreviewed
CVE-2022-28234
was published
May 12, 2022
Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919....
High
Unreviewed
CVE-2022-1621
was published
May 11, 2022
Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to...
High
Unreviewed
CVE-2022-1619
was published
May 9, 2022
global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This...
High
Unreviewed
CVE-2022-1381
was published
Apr 19, 2022
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with...
High
Unreviewed
CVE-2022-29072
was published
Apr 16, 2022
An Uncontrolled Memory Allocation vulnerability leading to a Heap-based Buffer Overflow in the...
High
Unreviewed
CVE-2022-22188
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic...
High
Unreviewed
CVE-2021-21948
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of...
High
Unreviewed
CVE-2021-21914
was published
Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft...
High
Unreviewed
CVE-2021-21944
was published
Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image...
High
Unreviewed
CVE-2021-21947
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft...
High
Unreviewed
CVE-2021-21943
was published
Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image...
High
Unreviewed
CVE-2021-21946
was published
Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft...
High
Unreviewed
CVE-2021-21945
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of...
High
Unreviewed
CVE-2021-40426
was published
Apr 15, 2022
The affected product is vulnerable to a heap-based buffer overflow, which may lead to code...
High
Unreviewed
CVE-2022-21214
was published
Apr 13, 2022
Heap buffer overflow in libr/bin/format/mach0/mach0.c in GitHub repository radareorg/radare2...
High
Unreviewed
CVE-2022-1240
was published
Apr 7, 2022
heap buffer overflow in get_one_sourceline in GitHub repository vim/vim prior to 8.2.
High
Unreviewed
CVE-2022-1160
was published
Mar 31, 2022
Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2.
High
Unreviewed
CVE-2022-0943
was published
Mar 15, 2022
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by an Heap...
High
Unreviewed
CVE-2022-24096
was published
Mar 12, 2022
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4.
High
Unreviewed
CVE-2022-0676
was published
Feb 23, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46577
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46603
was published
Feb 19, 2022
ProTip!
Advisories are also available from the
GraphQL API