Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

21,737 advisories

Loading
Buffer over read can happen in video driver when playing clip with atomsize having value... Critical Unreviewed
CVE-2020-11216 was published May 24, 2022
Out of bound reads might occur in while processing Service descriptor due to improper validation... Critical Unreviewed
CVE-2020-11213 was published May 24, 2022
Out of bounds reads while parsing NAN beacons attributes and OUIs due to improper length of field... Critical Unreviewed
CVE-2020-11212 was published May 24, 2022
An out of bounds read can happen when processing VSA attribute due to improper minimum required... Critical Unreviewed
CVE-2020-11215 was published May 24, 2022
Possible memory out of bound issue during music playback when an incorrect bit stream content is... Critical Unreviewed
CVE-2020-3686 was published May 24, 2022
In Eclipse OpenJ9 up to version 0.23, there is potential for a stack-based buffer overflow when... Critical Unreviewed
CVE-2020-27221 was published May 24, 2022
Possible integer overflow can occur when stream info update is called when total number of... Critical Unreviewed
CVE-2020-11197 was published May 24, 2022
Memory corruption while calculating L2CAP packet length in reassembly logic when remote sends... Critical Unreviewed
CVE-2020-11167 was published May 24, 2022
Buffer Over-read in audio driver while using malloc management function due to not returning NULL... Critical Unreviewed
CVE-2020-11136 was published May 24, 2022
Integer multiplication overflow resulting in lower buffer size allocation than expected causes... Critical Unreviewed
CVE-2020-11137 was published May 24, 2022
Out of bound memory access during music playback with modified content due to copying data... Critical Unreviewed
CVE-2020-11143 was published May 24, 2022
Uninitialized pointers accessed during music play back with incorrect bit stream due to an... Critical Unreviewed
CVE-2020-11138 was published May 24, 2022
Out of bound memory access during music playback with ALAC modified content due to improper... Critical Unreviewed
CVE-2020-11140 was published May 24, 2022
Buffer over-read while UE process invalid DL ROHC packet for decompression due to lack of check... Critical Unreviewed
CVE-2020-11144 was published May 24, 2022
The store system in PrestaShop 1.7.7.0 allows time-based boolean SQL injection via the module... Critical Unreviewed
CVE-2021-3110 was published May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core... Critical Unreviewed
CVE-2021-2108 was published May 24, 2022
Vulnerability in the Oracle One-to-One Fulfillment product of Oracle E-Business Suite (component:... Critical Unreviewed
CVE-2021-2100 was published May 24, 2022
Vulnerability in the Oracle One-to-One Fulfillment product of Oracle E-Business Suite (component:... Critical Unreviewed
CVE-2021-2101 was published May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component:... Critical Unreviewed
CVE-2021-2075 was published May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core... Critical Unreviewed
CVE-2021-2064 was published May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core... Critical Unreviewed
CVE-2021-2047 was published May 24, 2022
Vulnerability in the Oracle Scripting product of Oracle E-Business Suite (component:... Critical Unreviewed
CVE-2021-2029 was published May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web... Critical Unreviewed
CVE-2021-1994 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker... Critical Unreviewed
CVE-2021-1300 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker... Critical Unreviewed
CVE-2021-1301 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API