Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,218
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

157 advisories

Loading
st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5... High Unreviewed
CVE-2022-26490 was published Mar 7, 2022
A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when... High Unreviewed
CVE-2021-3748 was published Mar 24, 2022
Path traversal in Hadoop Critical
CVE-2022-26612 was published for org.apache.hadoop:hadoop-common (Maven) Apr 8, 2022
Proofpoint Enterprise Protection (PPS/PoD) contains a vulnerability which allows the pps user to... High Unreviewed
CVE-2022-46334 was published Dec 21, 2022
An issue in the component Create_tmp_table::finalize of MariaDB Server v10.7 and below was... High Unreviewed
CVE-2022-27378 was published Apr 13, 2022
MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component... High Unreviewed
CVE-2022-27382 was published Apr 13, 2022
MariaDB Server v10.7 and below was discovered to contain a global buffer overflow in the... High Unreviewed
CVE-2022-27387 was published Apr 13, 2022
MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component... High Unreviewed
CVE-2022-27386 was published Apr 13, 2022
A maliciously crafted PICT, BMP, PSD or TIF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 may... High Unreviewed
CVE-2022-27529 was published Apr 19, 2022
A malicious crafted TGA file when consumed through DesignReview.exe application could lead to... High Unreviewed
CVE-2022-27526 was published Apr 19, 2022
A maliciously crafted TIF or PICT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to... High Unreviewed
CVE-2022-27530 was published Apr 19, 2022
Mitel 6800 and 6900 Series SIP phone devices through 2022-04-27 have "undocumented functionality.... High Unreviewed
CVE-2022-29855 was published May 12, 2022
The querier component in Grafana Enterprise Logs 1.1.x through 1.3.x before 1.4.0 does not... Critical Unreviewed
CVE-2022-28660 was published May 21, 2022
Hardware debug modes and processor INIT setting that allow override of locks for some Intel(R)... High Unreviewed
CVE-2022-0004 was published May 13, 2022
Integer Overflow or Wraparound vulnerability in io_uring of Linux Kernel allows local attacker to... High Unreviewed
CVE-2022-1116 was published May 18, 2022
Local Information Disclosure Vulnerability in io.netty:netty-codec-http Moderate
CVE-2022-24823 was published for io.netty:netty-codec-http (Maven) May 10, 2022
JLLeitschuh
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).... Moderate Unreviewed
CVE-2022-21525 was published Jul 20, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).... Moderate Unreviewed
CVE-2022-21530 was published Jul 20, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions... Moderate Unreviewed
CVE-2022-21517 was published Jul 20, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).... Moderate Unreviewed
CVE-2022-21529 was published Jul 20, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure).... Moderate Unreviewed
CVE-2022-21534 was published Jul 20, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported... Moderate Unreviewed
CVE-2022-21515 was published Jul 20, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).... Moderate Unreviewed
CVE-2022-21526 was published Jul 20, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions... Moderate Unreviewed
CVE-2022-21537 was published Jul 20, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).... Moderate Unreviewed
CVE-2022-21527 was published Jul 20, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database