Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

140 advisories

Loading
Information disclosure due to buffer over-read in Modem while using static array to process IPv4... High Unreviewed
CVE-2022-33229 was published Feb 12, 2023
Information disclosure in Trusted Execution Environment due to buffer over-read while processing... Moderate Unreviewed
CVE-2022-33221 was published Feb 12, 2023
Information disclosure in modem due to buffer over-read while processing response from DNS server High Unreviewed
CVE-2022-25728 was published Feb 12, 2023
Information disclosure due to buffer over-read in WLAN while parsing NMF frame. High Unreviewed
CVE-2022-33271 was published Feb 12, 2023
Information disclosure in modem due to buffer over read in dns client due to missing length check High Unreviewed
CVE-2022-25732 was published Feb 12, 2023
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. High Unreviewed
CVE-2022-40512 was published Feb 12, 2023
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with... High Unreviewed
CVE-2022-33306 was published Feb 12, 2023
Transient DOS due to buffer over-read in WLAN Host while parsing frame information. High Unreviewed
CVE-2022-34145 was published Feb 12, 2023
Information disclosure in modem due to buffer over-red while performing checksum of packet received High Unreviewed
CVE-2022-25738 was published Feb 12, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS PersistenceConfigDxe... Moderate Unreviewed
CVE-2022-4432 was published Jan 5, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS... Moderate Unreviewed
CVE-2022-4435 was published Jan 5, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS LenovoSetupConfigDxe... Moderate Unreviewed
CVE-2022-4433 was published Jan 5, 2023
Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV. High Unreviewed
CVE-2022-3178 was published Sep 13, 2022
A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied)... High Unreviewed
CVE-2020-35511 was published Aug 24, 2022
Buffer Over-read in GitHub repository vim/vim prior to 9.0.0217. High Unreviewed
CVE-2022-2845 was published Aug 18, 2022
Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may... Moderate Unreviewed
CVE-2022-32141 was published Jun 25, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-2175 was published Jun 24, 2022
Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This... High Unreviewed
CVE-2022-1720 was published Jun 21, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-2124 was published Jun 20, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2. Critical Unreviewed
CVE-2022-1927 was published May 30, 2022
Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a... Critical Unreviewed
CVE-2021-34584 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34299 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34303 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34302 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34304 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API