Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,998
Maven
5,000+
npm
3,710
NuGet
661
pip
3,364
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,318 advisories

Loading
XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-based buffer overflow... High Unreviewed
CVE-2021-42529 was published May 4, 2022
XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-based buffer overflow... High Unreviewed
CVE-2021-42532 was published May 4, 2022
Local user gains root privileges via buffer overflow in rdist, via expstr() function. High Unreviewed
CVE-1999-0022 was published Apr 30, 2022
root privileges via buffer overflow in ordist command on SGI IRIX systems. High Unreviewed
CVE-1999-0029 was published Apr 30, 2022
It may be possible to have an extremely long aggregation pipeline in conjunction with a specific... High Unreviewed
CVE-2021-32040 was published Apr 13, 2022
By overlong input values an attacker may force overwrite of the internal program stack in SAP Web... High Unreviewed
CVE-2022-28772 was published Apr 13, 2022
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by a Stack... High Unreviewed
CVE-2022-24095 was published Mar 12, 2022
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by a Stack... High Unreviewed
CVE-2022-24094 was published Mar 12, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46565 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46643 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46638 was published Feb 19, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2022-24048 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed
CVE-2022-24049 was published Feb 19, 2022
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2022-24355 was published Feb 19, 2022
Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-0629 was published Feb 18, 2022
A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon... High Unreviewed
CVE-2022-23803 was published Feb 17, 2022
A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon... High Unreviewed
CVE-2022-23804 was published Feb 17, 2022
Stack overflow in PJSUA API when calling pjsua_recorder_create. An attacker-controlled 'filename'... Critical Unreviewed
CVE-2021-43300 was published Feb 17, 2022
Stack overflow in PJSUA API when calling pjsua_player_create. An attacker-controlled 'filename'... Critical Unreviewed
CVE-2021-43299 was published Feb 17, 2022
Stack overflow in PJSUA API when calling pjsua_playlist_create. An attacker-controlled ... Critical Unreviewed
CVE-2021-43301 was published Feb 17, 2022
Stack-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0408 was published Feb 12, 2022
A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon... High Unreviewed
CVE-2022-23946 was published Feb 12, 2022
A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon... High Unreviewed
CVE-2022-23947 was published Feb 12, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20700 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20701 was published Feb 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database