Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,494
Maven
5,000+
npm
4,129
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

388 advisories

Loading
A vulnerability in an Trend Micro Apex One dll may allow an attacker to manipulate it to cause an... Low Unreviewed
CVE-2020-24558 was published May 24, 2022
njs through 0.4.3, used in NGINX, has an out-of-bounds read in njs_lvlhsh_level_find in... Low Unreviewed
CVE-2020-24347 was published May 24, 2022
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before... Low Unreviewed
CVE-2020-3965 was published May 24, 2022
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to... Low Unreviewed
CVE-2020-12864 was published May 24, 2022
Buffer over-read in ADSP parse function due to lack of check for availability of sufficient data... Low Unreviewed
CVE-2019-14038 was published May 24, 2022
A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is... Low Unreviewed
CVE-2020-10724 was published May 24, 2022
hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing... Low Unreviewed
CVE-2020-13791 was published May 24, 2022
Lack of boundary checks for data offsets received from HLOS can lead to out-of-bound read in... Low Unreviewed
CVE-2019-10574 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Low Unreviewed
CVE-2020-2743 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Low Unreviewed
CVE-2020-2741 was published May 24, 2022
In crus_afe_get_param of msm-cirrus-playback.c, there is a possible out of bounds read due to an... Low Unreviewed
CVE-2020-0068 was published May 24, 2022
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component... Low Unreviewed
CVE-2020-0987 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Low Unreviewed
CVE-2020-2748 was published May 24, 2022
In l2c_link_process_num_completed_pkts of l2c_link.cc, there is a possible out of bounds read due... Low Unreviewed
CVE-2020-0055 was published May 24, 2022
An information disclosure vulnerability exists in the way that the Windows Graphics Device... Low Unreviewed
CVE-2020-0744 was published May 24, 2022
Bromium client version 4.0.3.2060 and prior to 4.1.7 Update 1 has an out of bound read results in... Low Unreviewed
CVE-2019-18567 was published May 24, 2022
In findParam of HevcUtils.cpp there is a possible out of bounds read due to a missing bounds... Low Unreviewed
CVE-2022-20528 was published Dec 20, 2022
readelf in ToaruOS 2.0.1 has some arbitrary address read vulnerabilities when parsing a crafted... Low Unreviewed
CVE-2022-38934 was published Sep 29, 2022
An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card... Low Unreviewed
CVE-2019-19479 was published May 24, 2022
The cli_feat_read_cb() function in src/gatt-database.c does not perform bounds checks on the ... Low Unreviewed
CVE-2021-3588 was published May 24, 2022
Inkscape 0.19 is vulnerable to an out-of-bounds read, which may allow an attacker to have access... Low Unreviewed
CVE-2021-42700 was published May 19, 2022
In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a... Low Unreviewed
CVE-2020-0093 was published May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... Low Unreviewed
CVE-2022-34875 was published Jul 19, 2022
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0... Low Unreviewed
CVE-2022-35900 was published Jul 16, 2022
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0... Low Unreviewed
CVE-2022-35905 was published Jul 16, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database