GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,847
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,932
npm 4,128
NuGet 735
pip 3,944
Pub 12
RubyGems 945
Rust 1,024
Swift 39

Unreviewed advisories

All unreviewed 269,457

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

217 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Memory corruption in Graphics while importing a file. High Unreviewed

CVE-2023-21665 was published May 2, 2023

Memory corruption due to incorrect type conversion or cast in audio while using audio playback... High Unreviewed

CVE-2022-33301 was published Apr 13, 2023

An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of... Critical Unreviewed

CVE-2022-43663 was published Mar 20, 2023

Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID... High Unreviewed

CVE-2022-40531 was published Mar 10, 2023

Memory corruption in display driver due to incorrect type casting while accessing the fence... High Unreviewed

CVE-2022-25715 was published Jan 9, 2023

A vulnerability was found in NagVis up to 1.9.33 and classified as problematic. This issue... Critical Unreviewed

CVE-2022-3979 was published Nov 14, 2022

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local... High Unreviewed

CVE-2022-41668 was published Nov 4, 2022

A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases,... High Unreviewed

CVE-2020-10735 was published Sep 10, 2022

Memory corruption in multimedia due to incorrect type conversion while adding data in Snapdragon... High Unreviewed

CVE-2022-22102 was published Sep 3, 2022

In audio DSP, there is a possible memory corruption due to improper casting. This could lead to... Moderate Unreviewed

CVE-2022-21786 was published Jul 7, 2022

In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte... High Unreviewed

CVE-2022-32547 was published Jun 17, 2022

Possible out of bounds read due to improper typecasting while handling page fault for global... High Unreviewed

CVE-2021-35091 was published Jun 15, 2022

Incorrect pointer argument passed to trusted application TA could result in un-intended memory... High Unreviewed

CVE-2021-1923 was published May 24, 2022

An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A NULL pointer... Moderate Unreviewed

CVE-2021-25177 was published May 24, 2022

An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A NULL pointer... Moderate Unreviewed

CVE-2021-25175 was published May 24, 2022

Type confusion in Gallagher Command Centre Server allows a remote attacker to crash the server or... High Unreviewed

CVE-2020-16103 was published May 24, 2022

In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexadecimal name could override... Moderate Unreviewed

CVE-2020-13293 was published May 24, 2022

A type confusion vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to... High Unreviewed

CVE-2020-7081 was published May 24, 2022

Forcepoint NGFW Security Management Center (SMC) versions lower than 6.5.12 or 6.7.1 have a rare... Moderate Unreviewed

CVE-2019-6147 was published May 24, 2022

An exploitable use-after-free vulnerability exists in the Length parsing function of NitroPDF. A... High Unreviewed

CVE-2019-5053 was published May 24, 2022

A vulnerability in the Secure Copy (SCP) feature of Cisco Adaptive Security Appliance (ASA)... Moderate Unreviewed

CVE-2019-12693 was published May 24, 2022

A type confusion vulnerability in the merge_param() function of php_http_params.c in PHP's pecl... Critical Unreviewed

CVE-2016-7398 was published May 24, 2022

Type confusion in WebRTC in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to... High Unreviewed

CVE-2018-6157 was published May 24, 2022

In HAliasAnalyzer.Query of hydrogen-alias-analysis.h, there is possible memory corruption due to... Critical Unreviewed

CVE-2019-2097 was published May 24, 2022

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and... High Unreviewed

CVE-2017-2962 was published May 17, 2022

Previous 12…9 Next

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

217 advisories