GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
140 advisories
Filter by severity
Information disclosure due to buffer over-read in Modem while using static array to process IPv4...
High
Unreviewed
CVE-2022-33229
was published
Feb 12, 2023
Information disclosure in Trusted Execution Environment due to buffer over-read while processing...
Moderate
Unreviewed
CVE-2022-33221
was published
Feb 12, 2023
Information disclosure in modem due to buffer over-read while processing response from DNS server
High
Unreviewed
CVE-2022-25728
was published
Feb 12, 2023
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
High
Unreviewed
CVE-2022-33271
was published
Feb 12, 2023
Information disclosure in modem due to buffer over read in dns client due to missing length check
High
Unreviewed
CVE-2022-25732
was published
Feb 12, 2023
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
High
Unreviewed
CVE-2022-40512
was published
Feb 12, 2023
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with...
High
Unreviewed
CVE-2022-33306
was published
Feb 12, 2023
Transient DOS due to buffer over-read in WLAN Host while parsing frame information.
High
Unreviewed
CVE-2022-34145
was published
Feb 12, 2023
Information disclosure in modem due to buffer over-red while performing checksum of packet received
High
Unreviewed
CVE-2022-25738
was published
Feb 12, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS PersistenceConfigDxe...
Moderate
Unreviewed
CVE-2022-4432
was published
Jan 5, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS...
Moderate
Unreviewed
CVE-2022-4435
was published
Jan 5, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS LenovoSetupConfigDxe...
Moderate
Unreviewed
CVE-2022-4433
was published
Jan 5, 2023
Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV.
High
Unreviewed
CVE-2022-3178
was published
Sep 13, 2022
A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied)...
High
Unreviewed
CVE-2020-35511
was published
Aug 24, 2022
Buffer Over-read in GitHub repository vim/vim prior to 9.0.0217.
High
Unreviewed
CVE-2022-2845
was published
Aug 18, 2022
Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may...
Moderate
Unreviewed
CVE-2022-32141
was published
Jun 25, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2.
High
Unreviewed
CVE-2022-2175
was published
Jun 24, 2022
Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This...
High
Unreviewed
CVE-2022-1720
was published
Jun 21, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2.
High
Unreviewed
CVE-2022-2124
was published
Jun 20, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2.
Critical
Unreviewed
CVE-2022-1927
was published
May 30, 2022
Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a...
Critical
Unreviewed
CVE-2021-34584
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34299
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34303
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34302
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34304
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API