Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,344
Maven
5,000+
npm
3,973
NuGet
719
pip
3,770
Pub
12
RubyGems
923
Rust
978
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,968 advisories

Loading
Heap-based Buffer Overflow in vim/vim prior to 8.2. Critical Unreviewed
CVE-2022-0318 was published Jan 22, 2022
A stack-based buffer overflow vulnerability exists in the BlynkConsole.h runCommand functionality... Critical Unreviewed
CVE-2022-29496 was published Jun 18, 2022
An exploitable out-of-bounds write vulnerability in PotPlayer 1.7.21523 build 210729 may lead to... Critical Unreviewed
CVE-2021-40212 was published Jun 16, 2022
In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer... Critical Unreviewed
CVE-2022-34835 was published Jul 1, 2022
PDFAlto v0.4 was discovered to contain a heap buffer overflow via the component /pdfalto/src... Critical Unreviewed
CVE-2022-32324 was published Jul 2, 2022
OTFCC v0.10.4 was discovered to contain a heap buffer overflow after free via otfccbuild.c. Critical Unreviewed
CVE-2022-33047 was published Jul 7, 2022
Tenda AC23 v16.03.07.44 is vulnerable to Stack Overflow that will allow for the execution of... Critical Unreviewed
CVE-2022-32385 was published Jul 7, 2022
In transportDec_OutOfBandConfig of tpdec_lib.cpp, there is a possible out of bounds write due to... Critical Unreviewed
CVE-2022-20130 was published Jun 16, 2022
** DISPUTED ** md2roff 1.7 has a stack-based buffer overflow via a Markdown file containing a... Critical Unreviewed
CVE-2022-34913 was published Jul 3, 2022
In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could... Critical Unreviewed
CVE-2022-21744 was published Jul 7, 2022
In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This... Critical Unreviewed
CVE-2022-20083 was published Jul 7, 2022
Google gRPC before 2017-02-22 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2017-7860 was published May 17, 2022
FFmpeg before 2017-01-23 has an out-of-bounds write caused by a stack-based buffer overflow... Critical Unreviewed
CVE-2017-7866 was published May 17, 2022
The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel through 4.14.11... Critical Unreviewed
CVE-2018-5703 was published May 14, 2022
JavaScriptCore in WebKit, as distributed in Safari Technology Preview Release 22, allows remote... Critical Unreviewed
CVE-2017-5949 was published May 17, 2022
Google gRPC before 2017-04-05 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2017-9431 was published May 17, 2022
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in... Critical Unreviewed
CVE-2022-32032 was published Jul 2, 2022
Tenda AC23 v16.03.07.44 was discovered to contain a stack overflow via the AdvSetMacMtuWan function. Critical Unreviewed
CVE-2022-32383 was published Jul 7, 2022
Tenda AC23 v16.03.07.44 was discovered to contain a buffer overflow via fromAdvSetMacMtuWan. Critical Unreviewed
CVE-2022-32386 was published Jul 7, 2022
On Netcomm router models NF20MESH, NF20, and NL1902 a stack based buffer overflow affects the... Critical Unreviewed
CVE-2022-4873 was published Jan 11, 2023
Google gRPC before 2017-02-22 has an out-of-bounds write related to the gpr_free function in core... Critical Unreviewed
CVE-2017-7861 was published May 17, 2022
An issue was discovered in the Linux kernel through 4.17.2. The filter parsing in kernel/trace... Critical Unreviewed
CVE-2018-12714 was published May 14, 2022
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the DelDNSHnList... Critical Unreviewed
CVE-2022-34603 was published Jul 21, 2022
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the INTF parameter... Critical Unreviewed
CVE-2022-34604 was published Jul 21, 2022
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the ajaxmsg... Critical Unreviewed
CVE-2022-34608 was published Jul 21, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database