GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
497 advisories
Filter by severity
njs through 0.3.1, used in NGINX, has a heap-based buffer over-read in nxt_utf8_decode in nxt...
Critical
Unreviewed
CVE-2019-12207
was published
May 24, 2022
There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this...
Critical
Unreviewed
CVE-2021-37016
was published
May 24, 2022
An out-of-bounds heap read in Busybox's unlzma applet leads to information leak and denial of...
Critical
Unreviewed
CVE-2021-42374
was published
May 24, 2022
An out-of-bounds read in the SNMP stack in Contiki-NG 4.4 and earlier allows an attacker to cause...
Critical
Unreviewed
CVE-2020-12141
was published
May 24, 2022
libmobi is vulnerable to Out-of-bounds Read
Critical
Unreviewed
CVE-2021-3881
was published
May 24, 2022
An issue was discovered in gpac 0.8.0. The gf_odf_del_ipmp_tool function in odf_code.c has a heap...
Critical
Unreviewed
CVE-2020-19751
was published
May 24, 2022
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It allows...
Critical
Unreviewed
CVE-2021-38564
was published
May 24, 2022
libfetch before 2021-07-26, as used in apk-tools, xbps, and other products, mishandles numeric...
Critical
Unreviewed
CVE-2021-36159
was published
May 24, 2022
There is an Information Disclosure Vulnerability in Huawei Smartphone. Successful exploitation of...
Critical
Unreviewed
CVE-2021-22354
was published
May 24, 2022
FATEK Automation WinProladder Versions 3.30 and prior are vulnerable to an out-of-bounds read,...
Critical
Unreviewed
CVE-2021-32990
was published
May 24, 2022
In p2p_process_prov_disc_req of p2p_pd.c, there is a possible out of bounds read and write due to...
Critical
Unreviewed
CVE-2021-0516
was published
May 24, 2022
An information disclosure vulnerability exists in the Ethernet/IP UDP handler functionality of...
Critical
Unreviewed
CVE-2021-21777
was published
May 24, 2022
A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An...
Critical
Unreviewed
CVE-2021-20093
was published
May 24, 2022
Possible out of bound read while WLAN frame parsing due to lack of check for body and header...
Critical
Unreviewed
CVE-2020-11126
was published
May 24, 2022
Buffer over-read can happen while processing WPA,RSN IE of beacon and response frames if IE...
Critical
Unreviewed
CVE-2020-11159
was published
May 24, 2022
GattLib 0.3-rc1 has a stack-based buffer over-read in get_device_path_from_mac in dbus/gattlib.c.
Critical
Unreviewed
CVE-2021-33590
was published
May 24, 2022
CODESYS V2 Web-Server before 1.1.9.20 has an Out-of-bounds Read.
Critical
Unreviewed
CVE-2021-30194
was published
May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function...
Critical
Unreviewed
CVE-2020-36331
was published
May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function...
Critical
Unreviewed
CVE-2020-36330
was published
May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function...
Critical
Unreviewed
CVE-2018-25009
was published
May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function...
Critical
Unreviewed
CVE-2018-25010
was published
May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function...
Critical
Unreviewed
CVE-2018-25012
was published
May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function...
Critical
Unreviewed
CVE-2018-25013
was published
May 24, 2022
Delta Industrial Automation CNCSoft ScreenEditor Versions 1.01.28 (with ScreenEditor Version 1.01...
Critical
Unreviewed
CVE-2021-22668
was published
May 24, 2022
Improper validation of the length field of LLDP-MED TLV in userdisk/vport_lldpd in Moxa Camera...
Critical
Unreviewed
CVE-2021-25848
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API