GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
21,737 advisories
Filter by severity
Buffer over read can happen in video driver when playing clip with atomsize having value...
Critical
Unreviewed
CVE-2020-11216
was published
May 24, 2022
Out of bound reads might occur in while processing Service descriptor due to improper validation...
Critical
Unreviewed
CVE-2020-11213
was published
May 24, 2022
Out of bounds reads while parsing NAN beacons attributes and OUIs due to improper length of field...
Critical
Unreviewed
CVE-2020-11212
was published
May 24, 2022
An out of bounds read can happen when processing VSA attribute due to improper minimum required...
Critical
Unreviewed
CVE-2020-11215
was published
May 24, 2022
Possible memory out of bound issue during music playback when an incorrect bit stream content is...
Critical
Unreviewed
CVE-2020-3686
was published
May 24, 2022
In Eclipse OpenJ9 up to version 0.23, there is potential for a stack-based buffer overflow when...
Critical
Unreviewed
CVE-2020-27221
was published
May 24, 2022
Possible integer overflow can occur when stream info update is called when total number of...
Critical
Unreviewed
CVE-2020-11197
was published
May 24, 2022
Memory corruption while calculating L2CAP packet length in reassembly logic when remote sends...
Critical
Unreviewed
CVE-2020-11167
was published
May 24, 2022
Buffer Over-read in audio driver while using malloc management function due to not returning NULL...
Critical
Unreviewed
CVE-2020-11136
was published
May 24, 2022
Integer multiplication overflow resulting in lower buffer size allocation than expected causes...
Critical
Unreviewed
CVE-2020-11137
was published
May 24, 2022
Out of bound memory access during music playback with modified content due to copying data...
Critical
Unreviewed
CVE-2020-11143
was published
May 24, 2022
Uninitialized pointers accessed during music play back with incorrect bit stream due to an...
Critical
Unreviewed
CVE-2020-11138
was published
May 24, 2022
Out of bound memory access during music playback with ALAC modified content due to improper...
Critical
Unreviewed
CVE-2020-11140
was published
May 24, 2022
Buffer over-read while UE process invalid DL ROHC packet for decompression due to lack of check...
Critical
Unreviewed
CVE-2020-11144
was published
May 24, 2022
The store system in PrestaShop 1.7.7.0 allows time-based boolean SQL injection via the module...
Critical
Unreviewed
CVE-2021-3110
was published
May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core...
Critical
Unreviewed
CVE-2021-2108
was published
May 24, 2022
Vulnerability in the Oracle One-to-One Fulfillment product of Oracle E-Business Suite (component:...
Critical
Unreviewed
CVE-2021-2100
was published
May 24, 2022
Vulnerability in the Oracle One-to-One Fulfillment product of Oracle E-Business Suite (component:...
Critical
Unreviewed
CVE-2021-2101
was published
May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component:...
Critical
Unreviewed
CVE-2021-2075
was published
May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core...
Critical
Unreviewed
CVE-2021-2064
was published
May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core...
Critical
Unreviewed
CVE-2021-2047
was published
May 24, 2022
Vulnerability in the Oracle Scripting product of Oracle E-Business Suite (component:...
Critical
Unreviewed
CVE-2021-2029
was published
May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web...
Critical
Unreviewed
CVE-2021-1994
was published
May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker...
Critical
Unreviewed
CVE-2021-1300
was published
May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker...
Critical
Unreviewed
CVE-2021-1301
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API