Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,132
Erlang
29
GitHub Actions
19
Go
1,937
Maven
5,000+
npm
3,676
NuGet
642
pip
3,292
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

571 advisories

Loading
A heap-based buffer over write vulnerability was found in GhostScript's lp8000_print_page()... High Unreviewed
CVE-2020-27792 was published Aug 20, 2022
A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group... High Unreviewed
CVE-2022-26061 was published Aug 23, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40660 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40661 was published Sep 16, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38413 was published Sep 17, 2022
Adobe InCopy version 17.3 (and earlier) and 16.4.2 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38401 was published Sep 17, 2022
Adobe InCopy version 17.3 (and earlier) and 16.4.2 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38405 was published Sep 17, 2022
Adobe InCopy version 17.3 (and earlier) and 16.4.2 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38404 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38414 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38415 was published Sep 17, 2022
Adobe Photoshop versions 22.5.8 (and earlier) and 23.4.2 (and earlier) are affected by a Heap... High Unreviewed
CVE-2022-38433 was published Sep 17, 2022
Adobe Photoshop versions 22.5.8 (and earlier) and 23.4.2 (and earlier) are affected by a Heap... High Unreviewed
CVE-2022-38432 was published Sep 17, 2022
Adobe Animate version 21.0.11 (and earlier) and 22.0.7 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38411 was published Sep 17, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483. High Unreviewed
CVE-2022-3234 was published Sep 18, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-35708 was published Sep 20, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-35706 was published Sep 20, 2022
A heap out-of-bounds memory write exists in FFMPEG since version 5.1. The size calculation in ... High Unreviewed
CVE-2022-2566 was published Sep 25, 2022
A vulnerability has been identified in Solid Edge (All Versions < SE2022MP9). The affected... High Unreviewed
CVE-2022-37864 was published Oct 11, 2022
A vulnerability has been identified in JT2Go (All versions < V14.1.0.4), Teamcenter Visualization... High Unreviewed
CVE-2022-39136 was published Nov 8, 2022
A vulnerability in the generic routing encapsulation (GRE) tunnel decapsulation feature of Cisco... High Unreviewed
CVE-2022-20946 was published Nov 16, 2022
The target's backtrace indicates that libc has detected a heap error or that the target was... High Unreviewed
CVE-2022-4141 was published Nov 25, 2022
GE CIMPICITY versions 2022 and prior is vulnerable to a heap-based buffer overflow, which could... High Unreviewed
CVE-2022-2948 was published Dec 8, 2022
A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead... High Unreviewed
CVE-2022-2601 was published Dec 14, 2022
A vulnerability was found in Axiomatic Bento4. It has been rated as critical. Affected by this... High Unreviewed
CVE-2022-4584 was published Dec 17, 2022
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of... High Unreviewed
CVE-2022-43601 was published Dec 23, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database