Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

6,767 advisories

Loading
TOTOLINK X5000R v9.1.0u.6118_B20201102 was discovered to contain a stack overflow in the function... High Unreviewed
CVE-2021-45734 was published Feb 5, 2022
TOTOLINK X5000R v9.1.0u.6118_B20201102 was discovered to contain a stack overflow in the function... High Unreviewed
CVE-2021-45741 was published Feb 5, 2022
TOTOLINK A720R v4.1.5cu.470_B20200911 was discovered to contain a stack overflow in the... High Unreviewed
CVE-2021-45739 was published Feb 5, 2022
A CWE-787: Out-of-bounds Write vulnerability exists that could cause arbitrary code execution... High Unreviewed
CVE-2021-22807 was published Jan 29, 2022
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec... High Unreviewed
CVE-2021-4034 was published Jan 29, 2022
A memory corruption vulnerability exists in the netserver parse_command_list functionality of... High Unreviewed
CVE-2022-21796 was published Jan 29, 2022
Cesanta MJS v2.20.0 was discovered to contain a stack overflow via snquote at mjs/src/mjs_json.c. High Unreviewed
CVE-2021-46509 was published Jan 28, 2022
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_disown at src... High Unreviewed
CVE-2021-46518 was published Jan 28, 2022
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_jprintf at src... High Unreviewed
CVE-2021-46520 was published Jan 28, 2022
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_array_length at src... High Unreviewed
CVE-2021-46519 was published Jan 28, 2022
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via /usr/lib/x86_64-linux... High Unreviewed
CVE-2021-46522 was published Jan 28, 2022
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via to_json_or_debug at mjs... High Unreviewed
CVE-2021-46523 was published Jan 28, 2022
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via snquote at mjs/src... High Unreviewed
CVE-2021-46524 was published Jan 28, 2022
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_get_cstring at src... High Unreviewed
CVE-2021-46527 was published Jan 28, 2022
iDRAC9 versions prior to 5.00.20.00 and iDRAC8 versions prior to 2.82.82.82 contain a stack-based... High Unreviewed
CVE-2021-36347 was published Jan 27, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0359 was published Jan 27, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0361 was published Jan 27, 2022
Jerryscript v3.0.0 and below was discovered to contain a stack overflow via... High Unreviewed
CVE-2021-44988 was published Jan 26, 2022
Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src... High Unreviewed
CVE-2021-46483 was published Jan 26, 2022
Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src... High Unreviewed
CVE-2021-46482 was published Jan 26, 2022
xhtml_translate_entity in xhtml.c in epub2txt (aka epub2txt2) through 2.02 allows a stack-based... High Unreviewed
CVE-2022-23850 was published Jan 24, 2022
Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_op_object_find_own in /ecma... High Unreviewed
CVE-2022-22888 was published Jan 22, 2022
Jerryscript 3.0.0 was discovered to contain a stack overflow via vm_loop.lto_priv.304 in /jerry... High Unreviewed
CVE-2022-22893 was published Jan 22, 2022
Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_lcache_lookup in /jerry... High Unreviewed
CVE-2022-22894 was published Jan 22, 2022
Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via... High Unreviewed
CVE-2022-22895 was published Jan 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database