Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,985
Erlang
29
GitHub Actions
16
Go
1,774
Maven
5,000
npm
3,541
NuGet
617
pip
3,123
Pub
10
RubyGems
838
Rust
790
Swift
34
Unreviewed advisories
All unreviewed
5,000+

478 advisories

Loading
Denial of Service in https-proxy-agent Critical
CVE-2018-3739 was published for https-proxy-agent (npm) Jul 27, 2018
kurt-r2c
Out-of-bounds Read in atob Critical
CVE-2018-3745 was published for atob (npm) Oct 9, 2018
Out-of-bounds Read in Pillow Critical
CVE-2021-25287 was published for Pillow (pip) Jun 8, 2021
Out-of-bounds Read Critical
CVE-2021-25288 was published for Pillow (pip) Jun 8, 2021
Out of bounds access in compact_arena Critical
CVE-2019-16139 was published for compact_arena (Rust) Aug 25, 2021
Out of bounds access in lucet-runtime-internals Critical
CVE-2020-35859 was published for lucet-runtime-internals (Rust) Aug 25, 2021
Out of bounds read in simple-slab Critical
CVE-2020-35892 was published for simple-slab (Rust) Aug 25, 2021
Out of bounds read in bra Critical
CVE-2021-25905 was published for bra (Rust) Aug 25, 2021
tdunlap607
Out of bounds read in xcb Critical
CVE-2021-26957 was published for xcb (Rust) Aug 25, 2021
Out of bounds read in fltk Critical
CVE-2021-28308 was published for fltk (Rust) Aug 25, 2021
An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in... Critical Unreviewed
CVE-2021-4048 was published Dec 9, 2021
There is an Out-of-bounds read vulnerability in Huawei Smartphone.Successful exploitation of this... Critical Unreviewed
CVE-2021-37051 was published Dec 9, 2021
A missing bound check in RTCP flag parsing code prior to WhatsApp for Android v2.21.23.2,... Critical Unreviewed
CVE-2021-24043 was published Feb 8, 2022
Out-of-bounds Read in Homebrew mruby prior to 3.2. Critical Unreviewed
CVE-2022-0525 was published Feb 10, 2022
An issue was discovered in the DNS proxy in Connman through 1.40. forward_dns_reply mishandles a... Critical Unreviewed
CVE-2022-23097 was published Feb 10, 2022
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply... Critical Unreviewed
CVE-2022-23096 was published Feb 10, 2022
Read out-of-bounds in PJSUA API when calling pjsua_recorder_create. An attacker-controlled ... Critical Unreviewed
CVE-2021-43302 was published Feb 17, 2022
Out-of-bounds Read in Homebrew mruby prior to 3.2. Critical Unreviewed
CVE-2022-0623 was published Feb 18, 2022
Out-of-bounds Read in GitHub repository mruby/mruby prior to 3.2. Critical Unreviewed
CVE-2022-0717 was published Feb 24, 2022
There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this... Critical Unreviewed
CVE-2021-40050 was published Mar 11, 2022
Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of-bounds read in the function... Critical Unreviewed
CVE-2021-33293 was published Mar 11, 2022
Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component... Critical Unreviewed
CVE-2022-26280 was published Mar 30, 2022
Possible out of bound read due to improper validation of IE length during SSID IE parse when... Critical Unreviewed
CVE-2021-35088 was published Apr 2, 2022
An Out of Bounds read may potentially occur while processing an IBSS beacon, in Snapdragon Auto,... Critical Unreviewed
CVE-2021-35117 was published Apr 2, 2022
A remote code execution vulnerability due to incomplete check for 'xheader_decode_path_record'... Critical Unreviewed
CVE-2021-26623 was published Apr 3, 2022
ProTip! Advisories are also available from the GraphQL API